KLA10077WLF vulnerability in Apple iTunes

2014-05-18T00:00:00
ID KLA10077
Type kaspersky
Reporter Kaspersky Lab
Modified 2018-10-16T00:00:00

Description

CVSS:

4.4

Detect date:

05/18/2014

Severity:

Warning

Description:

A permissions vulnerability was found in Apple iTunes. By exploiting this vulnerability malicious users can modify local files. This vulnerability can be exploited locally via standard file system operations.

Affected products:

Apple iTunes 11 versions 11.2.0 and earlier for OS X

Solution:

Update to latest version
iTunew

Original advisories:

Apple bulletin

Impacts:

WLF

Related products:

Apple iTunes

CVE-IDS:

CVE-2014-1347