Description
Multiple vulnerabilities were found in iTunes. Malicious users can exploit these vulnerabilities to execute arbitrary code, perform cross-site scripting attack, obtain sensitive information.
Below is a complete list of vulnerabilities:
- A stack overflow vulnerability in libxslt can be exploited remotely to obtain sensitive information;
- Multiple memory corruption vulnerabilities in WebKit can be exploited remotely via specially crafted web content to execute arbitrary code;
- Multiple logic issues in WebKit can be exploited remotely via specially crafted web content to perform cross-site scripting attacks;
Original advisories
Exploitation
Malware exists for this vulnerability. Usually such malware is classified as Exploit. More details.
Related products
CVE list
- CVE-2019-8684 critical
- CVE-2019-8649 warning
- CVE-2019-8686 high
- CVE-2019-8678 high
- CVE-2019-8673 high
- CVE-2019-8688 critical
- CVE-2019-8676 critical
- CVE-2019-13118 warning
- CVE-2019-8690 warning
- CVE-2019-8669 critical
- CVE-2019-8681 high
- CVE-2019-8644 high
- CVE-2019-8666 high
- CVE-2019-8672 critical
- CVE-2019-8658 warning
- CVE-2019-8689 critical
- CVE-2019-8685 critical
- CVE-2019-8679 high
- CVE-2019-8677 high
- CVE-2019-8671 high
- CVE-2019-8680 high
- CVE-2019-8687 high
- CVE-2019-8683 high
Read more
Find out the statistics of the vulnerabilities spreading in your region on statistics.securelist.com
Found an inaccuracy in the description of this vulnerability? Let us know!