Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2012-2018 Tenable Network Security, Inc.MACOSX_ITUNES_10_6_3.NASL
HistoryJun 14, 2012 - 12:00 a.m.

iTunes < 10.6.3 m3u Multiple Buffer Overflow Vulnerabilities (Mac OS X)

2012-06-1400:00:00
This script is Copyright (C) 2012-2018 Tenable Network Security, Inc.
www.tenable.com
23

9.3 High

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.804 High

EPSS

Percentile

98.3%

JSON

The version of iTunes installed on the remote Mac OS X host is earlier than 10.6.3 and is, therefore, affected by stack and heap based buffer overflow vulnerabilities. The application does not properly handle β€˜m3u’ playlist files. This error can cause the application to crash or possibly allow arbitrary code execution.

#
# (C) Tenable Network Security, Inc.
#

include("compat.inc");

if (description)
{
  script_id(59499);
  script_version("1.14");
  script_cvs_date("Date: 2018/07/14  1:59:36");

  script_cve_id("CVE-2012-0677");
  script_bugtraq_id(53933, 54113);
  script_xref(name:"EDB-ID", value:"19098");
  script_xref(name:"EDB-ID", value:"19322");
  script_xref(name:"EDB-ID", value:"19387");

  script_name(english:"iTunes < 10.6.3 m3u Multiple Buffer Overflow Vulnerabilities (Mac OS X)");
  script_summary(english:"Checks version of iTunes on Mac OS X");

  script_set_attribute(
    attribute:"synopsis",
    value:
"The remote host contains a multimedia application that has multiple
buffer overflow vulnerabilities."
  );
  script_set_attribute(
    attribute:"description",
    value:
"The version of iTunes installed on the remote Mac OS X host is
earlier than 10.6.3 and is, therefore, affected by stack and heap
based buffer overflow vulnerabilities. The application does not
properly handle 'm3u' playlist files. This error can cause the
application to crash or possibly allow arbitrary code execution."
  );
  script_set_attribute(
    attribute:"solution",
    value:"Upgrade to iTunes 10.6.3 or later."
  );
  script_set_cvss_base_vector("CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C");
  script_set_cvss_temporal_vector("CVSS2#E:F/RL:OF/RC:C");
  script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H");
  script_set_cvss3_temporal_vector("CVSS:3.0/E:F/RL:O/RC:C");
  script_set_attribute(attribute:"exploitability_ease", value:"Exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"true");
  script_set_attribute(attribute:"exploit_framework_core", value:"true");
  script_set_attribute(attribute:"metasploit_name", value:'Apple iTunes 10 Extended M3U Stack Buffer Overflow');
  script_set_attribute(attribute:"exploit_framework_metasploit", value:"true");
  script_set_attribute(attribute:"exploit_framework_canvas", value:"true");
  script_set_attribute(attribute:"canvas_package", value:'CANVAS');
  script_set_attribute(
    attribute:"see_also",
    value:"http://support.apple.com/kb/HT5318"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"http://lists.apple.com/archives/security-announce/2012/Jun/msg00000.html"
  );

  script_set_attribute(attribute:"vuln_publication_date", value:"2012/06/11");
  script_set_attribute(attribute:"patch_publication_date", value:"2012/06/11");
  script_set_attribute(attribute:"plugin_publication_date", value:"2012/06/14");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"cpe:/a:apple:itunes");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_family(english:"MacOS X Local Security Checks");

  script_copyright(english:"This script is Copyright (C) 2012-2018 Tenable Network Security, Inc.");

  script_dependencies("macosx_itunes_detect.nasl");
  script_require_keys("Host/MacOSX/Version", "installed_sw/iTunes");

  exit(0);
}

include("vcf.inc");

os = get_kb_item("Host/MacOSX/Version");
if (!os) audit(AUDIT_OS_NOT, "Mac OS X");

app_info = vcf::get_app_info(app:"iTunes");

constraints = [{"fixed_version" : "10.6.3"}];

vcf::check_version_and_report(app_info:app_info, constraints:constraints, severity:SECURITY_HOLE);
VendorProductVersionCPE
appleitunescpe:/a:apple:itunes

Related

canvas 1
saint 4
packetstorm 2
seebug 3
openvas 4
exploitdb 2
cve 1
prion 1
exploitpack 2
cvelist 1
nvd 1
checkpoint_advisories 2
zeroscience 1
nessus 3
securityvulns 2
canvas
canvas
Immunity Canvas: ITUNES_10_6_1
2012-06-12 14:55:00
saint
saint
iTunes m3u Playlist Overflow
2012-07-03 00:00:00
iTunes m3u Playlist Overflow
2012-07-03 00:00:00
iTunes m3u Playlist Overflow
2012-07-03 00:00:00
packetstorm
packetstorm
iTunes Extended M3U Stack Buffer Overflow
2012-06-21 00:00:00
Apple iTunes 10.6.1.7 M3U Playlist Buffer Overflow
2012-06-12 00:00:00
seebug
seebug
Apple iTunes <= 10.6.1.7 Extended m3u Stack Buffer Overflow
2014-07-01 00:00:00
Apple iTunes 10.6.1.7 M3U Playlist File Walking Heap Buffer Overflow
2014-07-01 00:00:00
Apple iTunesζ‰§θ‘Œδ»»ζ„δ»£η ε’Œζ‹’η»ζœεŠ‘ζΌζ΄ž
2012-06-13 00:00:00
openvas
openvas
Apple iTunes '.m3u' Playlist Code Execution Vulnerabilities (Windows)
2012-06-12 00:00:00
Apple iTunes '.m3u' Playlist Code Execution Vulnerability (Mac OS X)
2012-06-12 00:00:00
Apple iTunes '.m3u' Playlist Code Execution Vulnerabilities - Windows
2012-06-12 00:00:00
exploitdb
exploitdb
Apple iTunes 10.6.1.7 - Extended m3u Stack Buffer Overflow (Metasploit)
2012-06-21 00:00:00
Apple iTunes 10.6.1.7 - &#039;.m3u&#039; Walking Heap Buffer Overflow (PoC)
2012-06-13 00:00:00
cve
cve
CVE-2012-0677
2012-06-12 14:55:01
prion
prion
Heap overflow
2012-06-12 14:55:00
exploitpack
exploitpack
Apple iTunes 10.6.1.7 - Extended m3u Stack Buffer Overflow (Metasploit)
2012-06-21 00:00:00
Apple iTunes 10.6.1.7 - .m3u Walking Heap Buffer Overflow (PoC)
2012-06-13 00:00:00
cvelist
cvelist
CVE-2012-0677
2012-06-12 14:00:00
nvd
nvd
CVE-2012-0677
2012-06-12 14:55:01
checkpoint_advisories
checkpoint_advisories
Apple iTunes m3u Playlist Multiple Buffer Overflows (CVE-2012-0677)
2012-09-04 00:00:00
Apple iTunes m3u Playlist Multiple Buffer Overflows - High Confidence (CVE-2012-0677)
2013-03-03 00:00:00
zeroscience
zeroscience
Apple iTunes 10.6.1.7 M3U Playlist File Walking Heap Buffer Overflow
2012-06-12 00:00:00
nessus
nessus
iTunes < 10.6.3 Multiple Vulnerabilities
2012-06-19 00:00:00
Apple iTunes < 10.6.3 Multiple Vulnerabilities (uncredentialed check)
2012-06-14 00:00:00
Apple iTunes < 10.6.3 Multiple Vulnerabilities (credentialed check)
2012-06-14 00:00:00
securityvulns
securityvulns
Apple iTunes security vulnerabilities
2012-06-12 00:00:00
APPLE-SA-2012-06-11-1 iTunes 10.6.3
2012-06-12 00:00:00

9.3 High

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.804 High

EPSS

Percentile

98.3%

JSON
Related for MACOSX_ITUNES_10_6_3.NASL
canvas1saint4packetstorm2seebug3openvas4exploitdb2cve1prion1exploitpack2cvelist1nvd1checkpoint_advisories2zeroscience1nessus3securityvulns2