5 matches found
About the security content of iTunes 12.9.3 for Windows - Apple Support
About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and patches or releases are available. Recent releases are listed on the Apple security updates page. Apple security documents reference...
CVE-2019-6235
CVE-2019-6235 is an Apple memory-corruption issue fixed in iOS 12.1.3, macOS Mojave 10.14.3, tvOS 12.1.2, watchOS 5.1.3, and iTunes 12.9.3 for Windows. A sandboxed process may be able to circumvent sandbox restrictions. The fix is described as improved validation. Apple advisories HT209443/HT2094...
Apple iTunes < 12.9.3 Multiple Vulnerabilities (credentialed check)
The version of Apple iTunes installed on the remote Windows host is prior to 12.9.3. It is, therefore, affected by multiple vulnerabilities as referenced in the HT209450 advisory: - Multiple vulnerabilities exist due to input processing flaws in the WebKit component. An attacker may be able to...
CVE-2019-6235
creationtimestamp| type| source ---|---|--- 2019-01-28 15:10:00+00:00| seen| MISP/5c4f1a2e-1300-4391-87cf-19c50a021402...
KLA11408 Multiple vulnerabilities in Apple iTunes
Multiple vulnerabilities were found in Apple iTunes. Malicious users can exploit these vulnerabilities to bypass security restrictions, gain privileges, execute arbitrary code, perform cross-site scripting attack. Below is a complete list of vulnerabilities: 1. A memory corruption vulnerability i...