Уязвимости Угрозы

English Russian Japanese LatAm Türkiye Brasil France Český Deutschland

KLA11489
Multiple vulnerabilities in iTunes

Обновлено: 03/06/2020
Дата обнаружения
 28/05/2019
Уровень угрозы
 Critical
Описание

Multiple vulnerabilities were found in iTunes. Malicious users can exploit these vulnerabilities to obtain sensitive information, execute arbitrary code, gain privileges.

Below is a complete list of vulnerabilities:

  1. An out-of-bounds read vulnerability in WebKit can be exploited remotely to obtain sensitive information;
  2. Multiple memory corruption vulnerabilities in WebKit can be exploited remotely to execute arbitrary code;
  3. An input validation issue in SQLite can be exploited remotely to gain privileges;
  4. A memory corruption vulnerability in SQLite can be exploited to execute arbitrary code;
  5. An input validation issue in SQLite can be exploited remotely to obtain sensitive information;
  6. A memory corruption vulnerability in SQLite can be exploited to gain privileges;
Пораженные продукты

ITunes version 12.9.5
Решение

Update to the latest version
Download iTunes
Первичный источник обнаружения
 HT210124
Оказываемое влияние
?
ACE 
[?]

OSI 
[?]

PE 
[?]
Связанные продукты
 Apple iTunes
CVE-IDS
CVE-2019-86016.8High
CVE-2019-86286.8High
CVE-2019-85974.3Warning
CVE-2019-86106.8High
CVE-2019-86226.8High
CVE-2019-86074.3Warning
CVE-2019-85716.8High
CVE-2019-85866.8High
CVE-2019-85836.8High
CVE-2019-86116.8High
CVE-2019-86154.3Warning
CVE-2019-85946.8High
CVE-2019-85956.8High
CVE-2019-85846.8High
CVE-2019-62376.8High
CVE-2019-85776.8High
CVE-2019-86007.5Critical
CVE-2019-86236.8High
CVE-2019-85984.3Warning
CVE-2019-86086.8High
CVE-2019-86196.8High
CVE-2019-86026.8High
CVE-2019-85876.8High
CVE-2019-85966.8High
CVE-2019-86096.8High
CVE-2019-85824.3Warning
Узнай статистику распространения уязвимостей в твоем регионе
© 2023 AO Kaspersky Lab. All Rights Reserved.
Privacy Policy

Up