Vulnerabilities Threats

English Russian Japanese LatAm Türkiye Brasil France Český Deutschland

KLA11279
Multiple vulnerabilities in Apple iTunes

Updated: 06/03/2020
Detect date
?
 12/06/2017
Severity
?
 Critical
Description

Multiple serious vulnerabilities have been found in Apple iTunes. Malicious users can exploit these vulnerabilities to execute arbitrary code and obtain sensitive information.

Below is a complete list of vulnerabilities:

  1. An unspecified vulnerability in APNs Server can be exploited remotely to obtain sensitive information;
  2. A memory corruption vulnerability can be exploited to execute arbitrary code;
  3. An integer overflow vulnerability in ICU can be exploited remotely to obtain sensitive information;
  4. Multiple memory corruption vulnerabilities in WebKit can be exploited remotely to execute arbitrary code.
Affected products

Apple iTunes earlier than 12.7.2
Solution

Update to latest version
Download iTunes
Original advisories

About the security content of iTunes 12.7.2 for Windows
Impacts
?
ACE 
[?]

OSI 
[?]

DoS 
[?]

SB 
[?]

SUI 
[?]
Related products
 Apple iTunes
CVE-IDS
?
CVE-2017-154224.3Warning
CVE-2017-71656.8High
CVE-2017-138706.8High
CVE-2017-71729.3Critical
CVE-2017-138846.8High
CVE-2017-138856.8High
CVE-2017-71566.8High
CVE-2017-71576.8High
CVE-2017-138566.8High
CVE-2017-71606.8High
CVE-2017-138644.3Warning
CVE-2017-71535.8High
CVE-2017-138666.8High
Find out the statistics of the vulnerabilities spreading in your region
© 2023 AO Kaspersky Lab. All Rights Reserved.
Privacy Policy Cookies

Up