3 matches found
CVE-2016-1742
CVE-2016-1742 concerns an untrusted search path vulnerability in the Apple iTunes installer prior to version 12.4. The issue allows local privilege escalation by placing a Trojan horse DLL in the current working directory, triggering code execution with the user’s privileges during installation. ...
KLA10813 Privilege escalation vulnerability in Apple iTunes
An unspecified vulnerability was found in Apple iTunes setup. By exploiting this vulnerability malicious users can gain privileges. This vulnerability can be exploited locally via a DLL hijack. Original advisories Apple advisory Related products Apple-iTunes CVE list CVE-2016-1742 high Solution...
About the security content of iTunes 12.4
About the security content of iTunes 12.4 This document describes the security content of iTunes 12.4. For the protection of our customers, Apple does not disclose, discuss, or confirm security issues until a full investigation has occurred and any necessary patches or releases are available. To...