Description
Multiple vulnerabilities were found in Apple iTunes. Malicious users can exploit these vulnerabilities to execute arbitrary code, perform cross-site scripting attack, cause denial of service.
Below is a complete list of vulnerabilities:
- Vulnerabilitiy in WebKit can be exploited remotely via specially crafted text file to execute arbitrary code;
- Vulnerabilitiy in WebKit can be exploited remotely via specially crafted web content to perform cross-site scripting attacks;
- Vulnerabilitiy in UIFoundation can be exploited remotely via specially crafted text file to execute arbitrary code;
- Vulnerabilitiy in CoreCrypto can be exploited remotely to cause denial of service;
- Vulnerabilitiy in CoreMedia can be exploited remotely via specially crafted web content to execute arbitrary code;
- Vulnerabilitiy in Foundation can be exploited remotely to execute arbitrary code;
- A memory corruption vulnerability in libxml2 can be exploited remotely to execute arbitrary code;
- A memory corruption vulnerability in libxslt can be exploited remotely to execute arbitrary code;
Original advisories
Exploitation
Malware exists for this vulnerability. Usually such malware is classified as Exploit. More details.
Related products
CVE list
- CVE-2019-8726 high
- CVE-2019-8733 high
- CVE-2019-8707 high
- CVE-2019-8719 warning
- CVE-2019-8745 high
- CVE-2019-8625 warning
- CVE-2019-8735 high
- CVE-2019-8763 high
- CVE-2019-8741 critical
- CVE-2019-8825 high
- CVE-2019-8746 critical
- CVE-2019-8749 critical
- CVE-2019-8756 critical
- CVE-2019-8750 critical
- CVE-2019-8764 warning
- CVE-2019-8710 high
- CVE-2019-8728 high
- CVE-2019-8734 high
- CVE-2019-8743 high
- CVE-2019-8751 high
- CVE-2019-8752 high
- CVE-2019-8765 high
- CVE-2019-8766 high
- CVE-2019-8773 high
- CVE-2019-8762 warning
Read more
Find out the statistics of the vulnerabilities spreading in your region on statistics.securelist.com
Found an inaccuracy in the description of this vulnerability? Let us know!