Apple iTunes Multiple Vulnerabilities
Last Update Date:
4 Mar 2011 10:52
Release Date:
4 Mar 2011
5509
Views
RISK: High Risk
TYPE: Clients - Audio & Video
Multiple vulnerabilities have been identified in Apple iTunes, which could be exploited by remote attackers to obtain sensitive information, bypass security restrictions or compromise a vulnerable system. These issues are caused by errors in ImageIO, libxml and WebKit.
Impact
- Remote Code Execution
- Security Restriction Bypass
- Information Disclosure
System / Technologies affected
- Apple iTunes versions prior to 10.2
Solutions
Before installation of the software, please visit the software manufacturer web-site for more details.
Upgrade to Apple iTunes version 10.2 :
http://www.apple.com/itunes/download/
Vulnerability Identifier
- CVE-2010-1205
- CVE-2010-1824
- CVE-2010-2249
- CVE-2010-4008
- CVE-2010-4494
- CVE-2011-0111
- CVE-2011-0112
- CVE-2011-0113
- CVE-2011-0114
- CVE-2011-0115
- CVE-2011-0116
- CVE-2011-0117
- CVE-2011-0118
- CVE-2011-0119
- CVE-2011-0120
- CVE-2011-0121
- CVE-2011-0122
- CVE-2011-0123
- CVE-2011-0124
- CVE-2011-0125
- CVE-2011-0126
- CVE-2011-0127
- CVE-2011-0128
- CVE-2011-0129
- CVE-2011-0130
- CVE-2011-0131
- CVE-2011-0132
- CVE-2011-0133
- CVE-2011-0134
- CVE-2011-0135
- CVE-2011-0136
- CVE-2011-0137
- CVE-2011-0138
- CVE-2011-0139
- CVE-2011-0140
- CVE-2011-0141
- CVE-2011-0142
- CVE-2011-0143
- CVE-2011-0144
- CVE-2011-0145
- CVE-2011-0146
- CVE-2011-0147
- CVE-2011-0148
- CVE-2011-0149
- CVE-2011-0150
- CVE-2011-0151
- CVE-2011-0152
- CVE-2011-0153
- CVE-2011-0154
- CVE-2011-0155
- CVE-2011-0156
- CVE-2011-0164
- CVE-2011-0165
- CVE-2011-0168
- CVE-2011-0170
- CVE-2011-0191
- CVE-2011-0192
Source
Related Link
Share with