4 matches found
Apple iTunes Multiple Vulnerabilities (HT6001) - Windows
Apple iTunes is prone to a security bypass vulnerability. SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:apple:itunes";...
APPLE-SA-2014-01-22-1 iTunes 11.1.4
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 APPLE-SA-2014-01-22-1 iTunes 11.1.4 iTunes 11.1.4 is now available and addresses the following: iTunes Available for: Mac OS X v10.6.8 or later, Windows 8, Windows 7, Vista, XP SP2 or later Impact: An attacker with a privileged network position may...
CVE-2014-1242
CVE-2014-1242 : Apple iTunes before 11.1.4 retrieves the iTunes Tutorials window over HTTP, enabling a man‑in‑the‑middle attacker with privileged network position to spoof the window contents by controlling the client–server data stream. Impact is limited to content injection in the Tutorials win...
Apple iTunes < 11.1.4 Multiple Vulnerabilities (uncredentialed check)
The version of Apple iTunes on the remote host is prior to version 11.1.4. It is, therefore, affected by multiple vulnerabilities : - The included versions of the WebKit, libxml, and libxslt components in iTunes contain several errors that can lead to memory corruption and arbitrary code executio...