Skip to main content

Apple iTunes Multiple vulnerabilities

Last Update Date: 24 Jan 2014 12:29 Release Date: 24 Jan 2014 4513 Views

RISK: High Risk

TYPE: Clients - Audio & Video

TYPE: Audio & Video

Multiple vulnerabilities have been identified in Apple iTunes.

  1. A remote user can execute arbitrary code on the target system.
  2. A remote authenticated user can write files outside of the target SMB directory.
  3. A local user can bypass security restrictions.

Impact

  • Denial of Service
  • Remote Code Execution
  • Data Manipulation

System / Technologies affected

  • Apple iTunes prior to 11.1.4

Solutions

Before installation of the software, please visit the software manufacturer web-site for more details.

  • The vendor has issued a fix (11.1.4).

Vulnerability Identifier


Source


Related Link