CVE-2015-5920
CVE-2015-5920 affects Apple iTunes for Windows prior to 12.3. The Software Update component mishandles redirection, enabling a man-in-the-middle to discover encrypted SMB credentials via unspecified vectors. Impact: partial disclosure of credentials; exploit context and vectors are not detailed i...