Secunia Security Advisory - Some vulnerabilities have been reported in Apple iTunes, which can be exploited by malicious, local users to gain escalated privileges and by malicious people to disclose sensitive information, cause a DoS (Denial of Service), or compromise a user's system.
e3555dddfcc7a14a7ee19f0c3e91df56510aa4d5132ed27aa902b2753dae6543----------------------------------------------------------------------
Secunia CSI
+ Microsoft SCCM
-----------------------
= Extensive Patch Management
http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/
----------------------------------------------------------------------
TITLE:
Apple iTunes Multiple Vulnerabilities
SECUNIA ADVISORY ID:
SA39135
VERIFY ADVISORY:
http://secunia.com/advisories/39135/
DESCRIPTION:
Some vulnerabilities have been reported in Apple iTunes, which can be
exploited by malicious, local users to gain escalated privileges and
by malicious people to disclose sensitive information, cause a DoS
(Denial of Service), or compromise a user's system.
1) Multiple errors in the ColorSync and ImageIO components when
handling images can be exploited to disclose application memory or
potentially execute arbitrary code.
For more information see vulnerabilities #1 through #4 and #9 in:
SA38932
2) An error when processing MP4 files can be exploited to trigger the
execution of an infinite loop and render the application unusable
after its restart via e.g. a specially crafted podcast.
3) During installation iTunes for Windows installs and executes
certain files in a directory in the ""%ALLUSERSPROFILE%\Application
Data\" path. As standard permissions allows any user to write files
to the path, this can be exploited to either create malicious files
with specific names before installation or malicious libraries after
installation, allowing execution of arbitrary code with SYSTEM
privileges.
The vulnerabilities are reported in versions prior to 9.1.
SOLUTION:
Update to version 9.1.
PROVIDED AND/OR DISCOVERED BY:
2) The vendor credits Sojeong Hong, Sourcefire VRT
3) Jason Geffner, NGSSoftware
CHANGELOG:
2010-03-31: Added additional information provided by NGSSoftware.
ORIGINAL ADVISORY:
http://support.apple.com/kb/HT4105
OTHER REFERENCES:
SA38932:
http://secunia.com/advisories/38932/
----------------------------------------------------------------------
About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.
Subscribe:
http://secunia.com/advisories/secunia_security_advisories/
Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/
Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.
----------------------------------------------------------------------
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed