4 matches found
Exploit for Integer Overflow or Wraparound in Apple Itunes
CVE-2022-26711: Apple ImageIO WebP Integer Overflow An intege...
CVE-2022-26711
CVE-2022-26711 describes an integer overflow in Apple's ImageIO WebP parsing. The root cause is an overflow in row-bytes calculation leading to an undersized buffer and out-of-bounds access during image decoding, enabling arbitrary code execution in apps using ImageIO (Safari, Preview, Mail, Mess...
Apple iTunes < 12.12.4 Multiple Vulnerabilities (credentialed check)
The version of Apple iTunes installed on the remote Windows host is prior to 12.12.4. It is, therefore, affected by multiple vulnerabilities as referenced in the HT213259 advisory. - A memory corruption issue was addressed with improved input validation. This issue is fixed in iTunes 12.12.4 for...
Apple iTunes < 12.12.4 Multiple Vulnerabilities (uncredentialed check)
The version of Apple iTunes installed on the remote Windows host is prior to 12.12.4. It is, therefore, affected by multiple vulnerabilities as referenced in the HT213259 advisory. - A memory corruption issue was addressed with improved input validation. This issue is fixed in iTunes 12.12.4 for...