Apple iTunes WebKit Multiple Vulnerabilities

Last Update Date: 21 Apr 2011 12:22 Release Date: 21 Apr 2011 6505 Views

RISK: High Risk

High Risk

TYPE: Clients - Audio & Video

TYPE: Audio & Video

Two vulnerabilities have been identified in Apple iTunes, which could be exploited by remote attackers to compromise a vulnerable system.

  1. Due to a use-after-free error in WebKit when handling text nodes, which could be exploited to execute arbitrary code via a malicious web page.
  2. Due to an integer overflow error in WebKit when handling certain style data, which could be exploited by remote attackers to execute arbitrary code via a specially crafted web page.

Impact

  • Remote Code Execution

System / Technologies affected

  • Apple iTunes versions prior to 10.2.2

Solutions

Before installation of the software, please visit the software manufacturer web-site for more details.

Vulnerability Identifier

Source

Related Link

Share with

Previous

Wireshark Multiple Code Execution and Denial of Service Vulnerabilities

20 Apr 2011 6498 Views

Next

Oracle Products Multiple Vulnerabilies

21 Apr 2011 6679 Views

We use cookies to give you the best possible experience on our website. By continuing to browse this site, you give consent for cookies to be used. For more details please read our Cookie Policy.

PRIVACY POLICY