Skip to main content

Apple iTunes Multiple Vulnerabilities

Last Update Date: 28 Jan 2011 Release Date: 18 Jun 2010 5397 Views

RISK: Medium Risk

Multiple vulnerabilities have been identified in Apple iTunes, which could be exploited by remote attackers to obtain sensitive information, bypass security restrictions or compromise a vulnerable system.

1. A heap overflow error within the handling of images with an embedded ColorSync profile, which could be exploited by attackers to execute arbitrary code.

2. An integer overflow error within the handling of TIFF files, which could be exploited by attackers to execute arbitrary code.