Дата обнаружения
|
31/10/2017 |
Уровень угрозы
|
High |
Описание
|
Multiple memory corruption vulnerabilities were found in Apple iTunes. By exploiting this vulnerability malicious users can execute arbitrary code and cause denial of service. This vulnerability can be exploited remotely via a specially crafted webpage. |
Пораженные продукты
|
Apple iTunes earlier than 12.7.1 |
Решение
|
Update to latest version |
Первичный источник обнаружения
|
About the security content of iTunes 12.7.1 for Windows |
Оказываемое влияние
?
|
ACE
[?]
DoS
[?]
|
Связанные продукты
|
Apple iTunes |
CVE-IDS
|
CVE-2017-137846.8High
CVE-2017-137856.8High CVE-2017-137916.8High CVE-2017-137926.8High CVE-2017-137946.8High CVE-2017-137956.8High CVE-2017-137966.8High CVE-2017-137986.8High CVE-2017-138026.8High CVE-2017-137836.8High CVE-2017-137886.8High CVE-2017-137936.8High CVE-2017-138036.8High |
Эксплуатация
|
The following public exploits exists for this vulnerability: https://www.exploit-db.com/exploits/43171 https://www.exploit-db.com/exploits/43170 https://www.exploit-db.com/exploits/43176 https://www.exploit-db.com/exploits/43167 https://www.exploit-db.com/exploits/43174 https://www.exploit-db.com/exploits/43169 https://www.exploit-db.com/exploits/43166 https://www.exploit-db.com/exploits/43175 |
Узнай статистику распространения уязвимостей в твоем регионе |