PT-2013-2791 · Apple · Itunes

Publicado

2013-05-19

·

Atualizado

2018-10-30

·

CVE-2013-0999

CVSS v2.0

9.3

Alta

VetorAV:N/AC:M/Au:N/C:C/I:C/A:C
Name of the Vulnerable Software and Affected Versions Apple iTunes versions prior to 11.0.3
Description The issue allows man-in-the-middle attackers to execute arbitrary code or cause a denial of service, resulting in memory corruption and application crash. This is related to vectors involving iTunes Store browsing.
Recommendations For Apple iTunes versions prior to 11.0.3, update to version 11.0.3 or later to resolve the issue.

Correção

DoS

Buffer Overflow

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-119

Identificadores relacionados

CVE-2013-0999
ZDI-13-109

Produtos afetados

Itunes