KLA11279
Multiple vulnerabilities in Apple iTunes

Обновлено: 03/06/2020

Дата обнаружения	06/12/2017
Уровень угрозы	Critical
Описание	Multiple serious vulnerabilities have been found in Apple iTunes. Malicious users can exploit these vulnerabilities to execute arbitrary code and obtain sensitive information. Below is a complete list of vulnerabilities: An unspecified vulnerability in APNs Server can be exploited remotely to obtain sensitive information; A memory corruption vulnerability can be exploited to execute arbitrary code; An integer overflow vulnerability in ICU can be exploited remotely to obtain sensitive information; Multiple memory corruption vulnerabilities in WebKit can be exploited remotely to execute arbitrary code.
Пораженные продукты	Apple iTunes earlier than 12.7.2
Решение	Update to latest version Download iTunes
Первичный источник обнаружения	About the security content of iTunes 12.7.2 for Windows
Оказываемое влияние ?	ACE [?] OSI [?] DoS [?] SB [?] SUI [?]
Связанные продукты	Apple iTunes
CVE-IDS	CVE-2017-154224.3Warning CVE-2017-71656.8High CVE-2017-138706.8High CVE-2017-71729.3Critical CVE-2017-138846.8High CVE-2017-138856.8High CVE-2017-71566.8High CVE-2017-71576.8High CVE-2017-138566.8High CVE-2017-71606.8High CVE-2017-138644.3Warning CVE-2017-71535.8High CVE-2017-138666.8High
	Узнай статистику распространения уязвимостей в твоем регионе

KLA11279Multiple vulnerabilities in Apple iTunes