9 matches found
iTunes 9.0.1 .pls File Handling Buffer Overflow
No description provided by source. Exploit Title: iTunes .pls file handling buffer overflow Date: 2009.12.20 Author: S2 Crew Hungary Software Link: - Version: 9.0 Tested on: OSX 10.5.8, Windows XP SP2? /GS flag, DOS CVE: CVE-2009-2817 Code: !/usr/bin/env ruby SETJMP = 0x92F04224 JMPBUF = 0x8fe312...
Apple iTunes .pls文件解析缓冲区溢出漏洞
BUGTRAQ ID: 36478 CVECAN ID: CVE-2009-2817 iTunes是用于Mac和PC的一款免费应用程序,可播放音乐和视频内容,以及将内容同步到iPod和Apple TV。 用户受骗使用iTunes加载了畸形的.pls播放列表文件就可以触发缓冲区溢出,导致执行任意代码。 Apple iTunes 9.0.1 厂商补丁: Apple ----- 目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载: http://www.apple.com Exploit Title: iTunes .pls file handling buffer overfl...
iTunes 9.0 Buffer Overflow
Exploit Title: iTunes .pls file handling buffer overflow Date: 2009.12.20 Author: S2 Crew Hungary Software Link: - Version: 9.0 Tested on: OSX 10.5.8, Windows XP SP2 /GS flag, DOS CVE: CVE-2009-2817 Code: !/usr/bin/env ruby SETJMP = 0x92F04224 JMPBUF = 0x8fe31290 STRDUP = 0x92EED110 8fe24459 jmp...
Apple iTunes 9.0.1 - .pls Handling Buffer Overflow
Apple iTunes 9.0.1 - .pls Handling Buffer Overflow Exploit Title: iTunes .pls file handling buffer overflow Date: 2009.12.20 Author: S2 Crew Hungary Software Link: - Version: 9.0 Tested on: OSX 10.5.8, Windows XP SP2 /GS flag, DOS CVE: CVE-2009-2817 Code: !/usr/bin/env ruby SETJMP = 0x92F04224...
Apple iTunes 9.0.1 - '.pls' Handling Buffer Overflow
Exploit Title: iTunes .pls file handling buffer overflow Date: 2009.12.20 Author: S2 Crew Hungary Software Link: - Version: 9.0 Tested on: OSX 10.5.8, Windows XP SP2 /GS flag, DOS CVE: CVE-2009-2817 Code: !/usr/bin/env ruby SETJMP = 0x92F04224 JMPBUF = 0x8fe31290 STRDUP = 0x92EED110 8fe24459 jmp...
Apple iTunes '.pls' Files Buffer Overflow Vulnerability
Apple iTunes is prone to a buffer overflow vulnerability. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:apple:itunes";...
CVE-2009-2817
Apple iTunes before 9.0.1 is affected by a .pls file handling buffer overflow vulnerability. The root cause is improper bounds checking when copying user-supplied data during .pls parsing, which can lead to remote code execution or a denial of service via a crafted .pls file. Public materials (in...
iTunes < 9.0.1 PLS File Buffer Overflow (Mac OS X)
The remote version of iTunes is older than 9.0.1. Such versions are affected by a buffer overflow involving the handling of PLS files. If an attacker can trick a user on the affected host into opening a malicious PLS file, he can leverage this issue to crash the affected application or to execute...
Apple iTunes < 9.0.1 PLS File Buffer Overflow (credentialed check)
The remote version of Apple iTunes is older than 9.0.1. Such versions are affected by a buffer overflow involving the handling of PLS files. If an attacker can trick a user on the affected host into opening a malicious PLS file, he can leverage this issue to crash the affected application or to...