Description
Multiple vulnerabilities were found in Apple iTunes. Malicious users can exploit these vulnerabilities to execute arbitrary code, perform cross-site scripting attack, cause denial of service.
Below is a complete list of vulnerabilities:
- Multiple memory corruption vulnerabilities in WebKit Process Model can be exploited to execute arbitrary code;
- Multiple memory corruption vulnerabilities in WebKit can be exploited to execute arbitrary code;
- A logic vulnerability in WebKit can be exploited to perform cross-site scripting attacks;
- A dynamic library loading vulnerability in iTunes can be exploited to execute arbitrary code;
- A memory corruption vulnerability in Graphics Driver can be exploited to execute arbitrary code;
- The HTTP referrer header vulnerability in WebKit can be exploited to obtain sensitive information.
Original advisories
Exploitation
Malware exists for this vulnerability. Usually such malware is classified as Exploit. More details.
Related products
CVE list
- CVE-2019-8815 critical
- CVE-2019-8782 high
- CVE-2019-8822 high
- CVE-2019-8823 high
- CVE-2019-8808 high
- CVE-2019-8783 high
- CVE-2019-8811 high
- CVE-2019-8813 warning
- CVE-2019-8812 high
- CVE-2019-8814 critical
- CVE-2019-8819 high
- CVE-2019-8816 critical
- CVE-2019-8801 warning
- CVE-2019-8784 critical
- CVE-2019-8820 high
- CVE-2019-8821 high
- CVE-2019-8827 warning
Read more
Find out the statistics of the vulnerabilities spreading in your region on statistics.securelist.com
Found an inaccuracy in the description of this vulnerability? Let us know!