Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
kasperskyKaspersky LabKLA10669
HistorySep 16, 2015 - 12:00 a.m.

KLA10669 Multiple vulnerabilities in Apple iTunes

2015-09-1600:00:00
Kaspersky Lab
threats.kaspersky.com
171

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.126 Low

EPSS

Percentile

95.4%

JSON

Detect date:

09/16/2015

Severity:

Critical

Description:

Multiple serious vulnerabilities have been found in iTunes. Malicious users can exploit these vulnerabilities to cause denial of service, execute arbitrary code or obtain sensitive information.

Affected products:

Apple iTunes versions earlier than 12.3

Solution:

Update to the latest version
Get iTunes

Original advisories:

Apple advisory

Impacts:

ACE

Related products:

Apple iTunes

CVE-IDS:

CVE-2015-11526.8High
CVE-2015-11536.8High
CVE-2015-37416.8High
CVE-2015-37466.8High
CVE-2015-37436.8High
CVE-2015-57556.8High
CVE-2015-36886.8High
CVE-2015-12057.5Critical
CVE-2015-37476.8High
CVE-2015-37446.8High
CVE-2015-58066.8High
CVE-2015-37346.8High
CVE-2015-37486.8High
CVE-2015-37426.8High
CVE-2015-37386.8High
CVE-2015-37406.8High
CVE-2015-37336.8High
CVE-2015-58226.8High
CVE-2015-58036.8High
CVE-2015-58236.8High
CVE-2015-58046.8High
CVE-2015-57976.8High
CVE-2015-57966.8High
CVE-2015-11577.8Critical
CVE-2015-37456.8High
CVE-2015-57906.8High
CVE-2015-58106.8High
CVE-2015-58116.8High
CVE-2015-57956.8High
CVE-2015-57946.8High
CVE-2015-57936.8High
CVE-2015-57926.8High
CVE-2015-59204.3Warning
CVE-2015-58056.8High
CVE-2015-37306.8High
CVE-2015-57616.8High
CVE-2015-58136.8High
CVE-2015-58126.8High
CVE-2015-57916.8High
CVE-2015-57896.8High
CVE-2015-58146.8High
CVE-2015-58196.8High
CVE-2015-57996.8High
CVE-2015-36866.8High
CVE-2015-36876.8High
CVE-2015-58156.8High
CVE-2015-58076.8High
CVE-2015-58176.8High
CVE-2015-58166.8High
CVE-2015-37356.8High
CVE-2015-37366.8High
CVE-2015-58016.8High
CVE-2015-58026.8High
CVE-2015-57986.8High
CVE-2015-58086.8High
CVE-2015-58186.8High
CVE-2015-37496.8High
CVE-2015-37376.8High
CVE-2015-37316.8High
CVE-2015-37396.8High
CVE-2014-81467.5Critical
CVE-2010-31909.3Critical
CVE-2015-58006.8High
CVE-2015-58216.8High
CVE-2015-58747.5Critical
CVE-2015-58096.8High

Exploitation:

Public exploits exist for this vulnerability.

References

Related

nessus 19
securityvulns 10
openvas 13
cve 51
mageia 2
prion 49
fedora 6
ubuntu 1
apple 2
ubuntucve 38
debiancve 1
threatpost 1
mskb 2
hp 1
checkpoint_advisories 1
seebug 1
mscve 1
nessus
nessus
Apple iTunes < 12.3 Multiple Vulnerabilities (uncredentialed check)
2015-10-26 00:00:00
Apple iTunes < 12.3 Multiple Vulnerabilities (credentialed check)
2015-09-18 00:00:00
iTunes for Windows < 12.3 Multiple Vulnerabilities
2015-10-23 00:00:00
securityvulns
securityvulns
APPLE-SA-2015-09-16-3 iTunes 12.3
2015-10-05 00:00:00
Apple iTunes multiple security vulnerabilities
2015-10-25 00:00:00
APPLE-SA-2015-09-30-2 Safari 9
2015-10-05 00:00:00
openvas
openvas
Apple iTunes Multiple Vulnerabilities Sep15 (Windows)
2015-10-01 00:00:00
Apple Safari Multiple Vulnerabilities-01 Oct15 (Mac OS X)
2015-10-13 00:00:00
Apple Safari Multiple Vulnerabilities-01 Sep15 (Mac OS X)
2015-09-01 00:00:00
cve
cve
CVE-2015-5755
2015-08-17 00:00:00
CVE-2015-5761
2015-08-17 00:00:00
CVE-2015-3688
2015-07-03 01:59:00
mageia
mageia
Updated webkit2 packages fix security vulnerability
2016-03-25 09:38:37
Updated webkit packages fix security vulnerability
2016-03-25 09:38:37
prion
prion
Memory corruption
2015-08-17 00:00:00
Memory corruption
2015-08-17 00:00:00
Memory corruption
2015-07-03 01:59:00
fedora
fedora
[SECURITY] Fedora 24 Update: webkitgtk3-2.4.10-1.fc24
2016-03-27 00:38:22
[SECURITY] Fedora 23 Update: webkitgtk3-2.4.10-1.fc23
2016-03-21 01:53:49
[SECURITY] Fedora 24 Update: webkitgtk-2.4.10-1.fc24
2016-03-27 00:38:11
ubuntu
ubuntu
WebKitGTK+ vulnerabilities
2016-03-21 00:00:00
apple
apple
About the security content of Apple TV 7.2.1
2016-02-25 00:00:00
About the security content of Apple TV 7.2.1 - Apple Support
2017-01-23 03:54:31
ubuntucve
ubuntucve
CVE-2015-1152
2015-05-08 00:00:00
CVE-2015-1154
2015-05-08 00:00:00
CVE-2015-1153
2015-05-07 00:00:00
debiancve
debiancve
CVE-2014-8146
2015-05-25 22:59:00
threatpost
threatpost
ICU Project ICU4C Library Vulnerabilities Patched
2015-05-05 11:21:07
mskb
mskb
MS11-025: Description of the security update for Visual C++ 2010 Service Pack 1: August 9, 2011
2018-10-09 07:00:00
MS11-025: Vulnerability in Microsoft Foundation Class (MFC) Library could allow remote code execution: April 12, 2011
2011-04-12 00:00:00
hp
hp
HPSBPI03720 rev. 1 - Software Vulnerability with Certain HP OfficeJet and PageWide Solutions
2021-03-09 00:00:00
checkpoint_advisories
checkpoint_advisories
Microsoft MFC Insecure Library Loading (CVE-2010-3190)
2018-10-09 00:00:00
seebug
seebug
Microsoft ATL/MFC跟踪工具'dwmapi.dll' DLL装载任意代码执行漏洞
2011-06-16 00:00:00
mscve
mscve
MFC Insecure Library Loading Vulnerability
2018-10-09 07:00:00

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.126 Low

EPSS

Percentile

95.4%

JSON
Related for KLA10669
nessus19securityvulns10openvas13cve51mageia2prion49fedora6ubuntu1apple2ubuntucve38debiancve1threatpost1mskb2hp1checkpoint_advisories1seebug1mscve1