Apple · Itunes · CVE-2011-3235
**Name of the Vulnerable Software and Affected Versions**
Apple iTunes versions prior to 10.5
**Description**
The issue allows man-in-the-middle attackers to execute arbitrary code or cause a denial of service, resulting in memory corruption and application crash, via vectors related to iTunes Store browsing.
**Recommendations**
For Apple iTunes versions prior to 10.5, update to version 10.5 or later to resolve the issue.