KLA11384
Multiple vulnerabilities in Apple iTunes

Updated: 06/03/2020
Detect date
?
12/12/2018
Severity
?
Critical
Description

Multiple vulnerabilities were found in Apple iTunes. Malicious users can exploit these vulnerabilities to spoof user interface, execute arbitrary code.

Below is a complete list of vulnerabilities:

  1. Multiple vulnerabilities can be exploited remotely to spoof user interface;
  2. Multiple memory corruption vulnerabilities can be exploited remotely to execute arbitrary code;
Affected products

Apple iTunes earlier than 12.9.2

Solution

Update to the latest version
Download iTunes

Original advisories

About the security content of iTunes 12.9.2 for Windows

Impacts
?
ACE 
[?]

SUI 
[?]
Related products
Apple iTunes
CVE-IDS
?
Find out the statistics of the vulnerabilities spreading in your region