Lucene search
HistorySep 24, 2009 - 6:30 p.m.
CVE-2009-2817
cve-2009-2817
buffer overflow
apple itunes
remote attackers
arbitrary code
denial of service
crafted file
9.3 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
7.5 High
AI Score
Confidence
Low
0.028 Low
EPSS
Percentile
90.8%
Buffer overflow in Apple iTunes before 9.0.1 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted .pls file.
Affected configurations
Node
appleitunesRange≤9.0-mac
ORappleitunesRange≤9.0-windows
ORappleitunesMatch1.0windows
ORappleitunesMatch1.0-mac
ORappleitunesMatch1.0-windows
ORappleitunesMatch1.1.1windows
ORappleitunesMatch1.1.1-mac
ORappleitunesMatch1.1.1-windows
ORappleitunesMatch1.1.2windows
ORappleitunesMatch1.1.2-mac
ORappleitunesMatch1.1.2-windows
ORappleitunesMatch2.0windows
ORappleitunesMatch2.0-mac
ORappleitunesMatch2.0-windows
ORappleitunesMatch2.0.1windows
ORappleitunesMatch2.0.1-mac
ORappleitunesMatch2.0.1-windows
ORappleitunesMatch2.0.2windows
ORappleitunesMatch2.0.2-mac
ORappleitunesMatch2.0.2-windows
ORappleitunesMatch2.0.3windows
ORappleitunesMatch2.0.3-mac
ORappleitunesMatch2.0.3-windows
ORappleitunesMatch2.0.4windows
ORappleitunesMatch2.0.4-mac
ORappleitunesMatch2.0.4-windows
ORappleitunesMatch3.0windows
ORappleitunesMatch3.0.1windows
ORappleitunesMatch4.0windows
ORappleitunesMatch4.0.0-mac
ORappleitunesMatch4.0.0-windows
ORappleitunesMatch4.0.1windows
ORappleitunesMatch4.0.1-mac
ORappleitunesMatch4.0.1-windows
ORappleitunesMatch4.1windows
ORappleitunesMatch4.1.0-mac
ORappleitunesMatch4.1.0-windows
ORappleitunesMatch4.2windows
ORappleitunesMatch4.2.0-mac
ORappleitunesMatch4.2.0-windows
ORappleitunesMatch4.2.72windows
ORappleitunesMatch4.5windows
ORappleitunesMatch4.5.0-mac
ORappleitunesMatch4.5.0-windows
ORappleitunesMatch4.6windows
ORappleitunesMatch4.6.0-mac
ORappleitunesMatch4.6.0-windows
ORappleitunesMatch4.7windows
ORappleitunesMatch4.7.0-mac
ORappleitunesMatch4.7.0-windows
ORappleitunesMatch4.7.1windows
ORappleitunesMatch4.7.1-mac
ORappleitunesMatch4.7.1-windows
ORappleitunesMatch4.7.1.30windows
ORappleitunesMatch4.8windows
ORappleitunesMatch4.8.0-mac
ORappleitunesMatch4.8.0-windows
ORappleitunesMatch4.9windows
ORappleitunesMatch4.9.0-mac
ORappleitunesMatch4.9.0-windows
ORappleitunesMatch5.0windows
ORappleitunesMatch5.0.0-mac
ORappleitunesMatch5.0.0-windows
ORappleitunesMatch5.0.1windows
ORappleitunesMatch5.0.1-mac
ORappleitunesMatch5.0.1-windows
ORappleitunesMatch6.0windows
ORappleitunesMatch6.0.0-mac
ORappleitunesMatch6.0.0-windows
ORappleitunesMatch6.0.1windows
ORappleitunesMatch6.0.1-mac
ORappleitunesMatch6.0.1-windows
ORappleitunesMatch6.0.2windows
ORappleitunesMatch6.0.2-mac
ORappleitunesMatch6.0.2-windows
ORappleitunesMatch6.0.3windows
ORappleitunesMatch6.0.3-mac
ORappleitunesMatch6.0.3-windows
ORappleitunesMatch6.0.4windows
ORappleitunesMatch6.0.4-mac
ORappleitunesMatch6.0.4-windows
ORappleitunesMatch6.0.4.2windows
ORappleitunesMatch6.0.5windows
ORappleitunesMatch6.0.5-mac
ORappleitunesMatch6.0.5-windows
ORappleitunesMatch7.0.0-mac
ORappleitunesMatch7.0.0-windows
ORappleitunesMatch7.0.1-mac
ORappleitunesMatch7.0.1-windows
ORappleitunesMatch7.0.2windows
ORappleitunesMatch7.0.2-mac
ORappleitunesMatch7.0.2-windows
ORappleitunesMatch7.1.0-mac
ORappleitunesMatch7.1.0-windows
ORappleitunesMatch7.1.1-mac
ORappleitunesMatch7.1.1-windows
ORappleitunesMatch7.2.0-mac
ORappleitunesMatch7.2.0-windows
ORappleitunesMatch7.3.0-mac
ORappleitunesMatch7.3.0-windows
ORappleitunesMatch7.3.1-mac
ORappleitunesMatch7.3.1-windows
ORappleitunesMatch7.3.2windows
ORappleitunesMatch7.3.2-mac
ORappleitunesMatch7.3.2-windows
ORappleitunesMatch7.4windows
ORappleitunesMatch7.4.0-mac
ORappleitunesMatch7.4.0-windows
ORappleitunesMatch7.4.1windows
ORappleitunesMatch7.4.1-mac
ORappleitunesMatch7.4.1-windows
ORappleitunesMatch7.4.2windows
ORappleitunesMatch7.4.2-mac
ORappleitunesMatch7.4.2-windows
ORappleitunesMatch7.4.3windows
ORappleitunesMatch7.5windows
ORappleitunesMatch7.5.0-mac
ORappleitunesMatch7.5.0-windows
ORappleitunesMatch7.6windows
ORappleitunesMatch7.6.0-mac
ORappleitunesMatch7.6.0-windows
ORappleitunesMatch7.6.1windows
ORappleitunesMatch7.6.1-mac
ORappleitunesMatch7.6.1-windows
ORappleitunesMatch7.6.2windows
ORappleitunesMatch7.6.2-mac
ORappleitunesMatch7.6.2-windows
ORappleitunesMatch7.7windows
ORappleitunesMatch7.7.0-mac
ORappleitunesMatch7.7.0-windows
ORappleitunesMatch7.7.1windows
ORappleitunesMatch7.7.1-mac
ORappleitunesMatch7.7.1-windows
ORappleitunesMatch8.0windows
ORappleitunesMatch8.0-mac
ORappleitunesMatch8.0-windows
ORappleitunesMatch8.0.0-mac
ORappleitunesMatch8.0.0-windows
ORappleitunesMatch8.0.1-windows
ORappleitunesMatch8.0.2-mac
ORappleitunesMatch8.0.2-windows
ORappleitunesMatch8.1-mac
ORappleitunesMatch8.1-windows
ORappleitunesMatch8.1.1-mac
ORappleitunesMatch8.1.1-windows
ORappleitunesMatch8.2-mac
ORappleitunesMatch8.2-windows
ORappleitunesMatch8.2.1-mac
ORappleitunesMatch8.2.1-windows
Related
nessus
nessus
Apple iTunes < 9.0.1 PLS File Buffer Overflow (uncredentialed check)
2009-09-23 00:00:00
Apple iTunes < 9.0.1 PLS File Buffer Overflow (credentialed check)
2009-09-23 00:00:00
iTunes < 9.0.1 PLS File Buffer Overflow (Mac OS X)
2009-09-23 00:00:00
checkpoint_advisories
checkpoint_advisories
Apple iTunes PLS File Parsing Buffer Overflow (CVE-2009-2817)
2010-05-02 00:00:00
seebug
seebug
Apple iTunes .pls文件解析缓冲区溢出漏洞
2010-03-05 00:00:00
iTunes 9.0.1 .pls File Handling Buffer Overflow
2014-07-01 00:00:00
openvas
openvas
Apple iTunes '.pls' Files Buffer Overflow Vulnerability
2009-10-01 00:00:00
Apple iTunes '.pls' Files Buffer Overflow Vulnerability
2009-10-01 00:00:00
packetstorm
packetstorm
iTunes 9.0 Buffer Overflow
2010-02-17 00:00:00
cvelist
cvelist
CVE-2009-2817
2009-09-24 18:00:00
nvd
nvd
CVE-2009-2817
2009-09-24 18:30:00
exploitpack
exploitpack
Apple iTunes 9.0.1 - .pls Handling Buffer Overflow
2010-02-17 00:00:00
prion
prion
Buffer overflow
2009-09-24 18:30:00
exploitdb
exploitdb
Apple iTunes 9.0.1 - '.pls' Handling Buffer Overflow
2010-02-17 00:00:00
9.3 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
7.5 High
AI Score
Confidence
Low
0.028 Low
EPSS
Percentile
90.8%
Related for CVE-2009-2817