KLA11384
Multiple vulnerabilities in Apple iTunes
Обновлено: 05/03/2019
Дата обнаружения
12/12/2018
Уровень угрозы
Critical
Описание

Multiple vulnerabilities were found in Apple iTunes. Malicious users can exploit these vulnerabilities to spoof user interface, execute arbitrary code.

Below is a complete list of vulnerabilities:

  1. Multiple vulnerabilities can be exploited remotely to spoof user interface;
  2. Multiple memory corruption vulnerabilities can be exploited remotely to execute arbitrary code;
Пораженные продукты

Apple iTunes earlier than 12.9.2

Решение

Update to the latest version
Download iTunes

Первичный источник обнаружения
About the security content of iTunes 12.9.2 for Windows
Оказываемое влияние
?
ACE 
[?]

SUI 
[?]
Связанные продукты
Apple iTunes
CVE-IDS

CVE-2018-4440
CVE-2018-4439
CVE-2018-4437
CVE-2018-4464
CVE-2018-4441
CVE-2018-4442
CVE-2018-4443
CVE-2018-4438