PT-2005-1165 · Apple · Itunes

Sean De Regge

·

Published

2005-01-19

·

Updated

2017-07-11

·

CVE-2005-0043

CVSS v2.0

7.5

High

VectorAV:N/AC:L/Au:N/C:P/I:P/A:P
Name of the Vulnerable Software and Affected Versions Apple iTunes version 4.7
Description A buffer overflow issue allows remote attackers to execute arbitrary code via a long URL in .m3u or .pls playlist files.
Recommendations For Apple iTunes version 4.7, update to a newer version to mitigate the risk of arbitrary code execution.

Exploit

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Related Identifiers

CVE-2005-0043

Affected Products

Itunes