EUVD-2017-11660

Malware in sbrugna...

Apple iTunes < 12.6 Multiple Vulnerabilities (credentialed check)

The version of Apple iTunes installed on the remote Windows host is prior to 12.6. It is, therefore, affected by multiple vulnerabilities : - Multiple vulnerabilities exist in the expat component, the most severe of which are remote code execution vulnerabilities. An unauthenticated, remote...

The vulnerability of the Mac OS X operating system, which allows a perpetrator to trigger a service failure or cause other adverse effects

The vulnerability of the libxslt component of the Mac OS X operating system arises from an operation that goes beyond the buffer boundaries in memory. Exploiting this vulnerability can allow a malicious actor to cause service failures or other effects such as memory corruption through unknown mea...

CVE-2017-2477

An issue was discovered in certain Apple products. macOS before 10.12.4 is affected. The issue involves the "libxslt" component. It allows remote attackers to cause a denial of service memory corruption or possibly have unspecified other impact via unknown vectors...

Apple iTunes < 12.4.2 Multiple Vulnerabilities (uncredentialed check)

The version of Apple iTunes running on the remote Windows host is prior to 12.4.2. It is, therefore, affected by multiple vulnerabilities : - Multiple memory corruption issues exist in the libxslt component due to improper validation of user-supplied input. An unauthenticated, remote attacker can...