Apple iTunes < 12.5.1 Multiple Vulnerabilities (credentialed check)

The version of Apple iTunes installed on the remote Windows host is prior to 12.5.1. It is, therefore, affected by multiple vulnerabilities : - A remote code execution vulnerability exists due to improper handling of error prototypes. An unauthenticated, remote attacker can exploit this, by...

CVE-2 0 1 6-4 7 5 8:for Safari browser UXSS vulnerability analysis-vulnerability warning-the black bar safety net

! Foreword In this article, I'm ready to share with you about Vulnerability CVE-2 0 1 6-4 7 5 8 details. This vulnerability is a Safari in a UXSS vulnerability. The so-called UXSS, i.e., a universal cross-site scripting attacks. Currently, Apple has in Safari 1 0. fixes this vulnerability. The...

Apple iTunes Multiple Vulnerabilities (Sep 2016) - Windows

Apple iTunes is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:apple:itunes"; ifdescription...

CVE-2016-4758

WebKit in Apple iOS before 10, iTunes before 12.5.1 on Windows, and Safari before 10 does not properly restrict access to the location variable, which allows remote attackers to obtain sensitive information via a crafted web site...

CVE-2016-4758

CVE-2016-4758 affects WebKit components in Apple iOS prior to 10, iTunes prior to 12.5.1 on Windows, and Safari prior to 10. It is a permissions-based information disclosure vulnerability related to access to the location variable in WebKit that could leak sensitive data when visiting crafted sit...