iTunes - Remote hacker automatic control
| Version: | 7.3 and prior. |
| Technical Details: | Arbitrary code execution due to a buffer overflow as a result of opening a malicious media file. |
Description: |
Apple's iTunes media playing software has been updated to address a vulnerability that could crash the application or allow an attacker to run software of their choice on a victim's system when a malicious music file is opened. |
Mitigation: |
Update to iTunes version 7.4 at the earliest opportunity. |
Updates: |
http://www.apple.com/itunes/download/ |
Source: |
http://docs.info.apple.com/article.html?artnum=61798 |
Exploits: |
|
| External Tracking Data: | CVE-ID: CVE-2007-3752 |
Social bookmark this page
More information:
Subscribe to our feed.Security Portal202420232022202120202019201820172016201520142013201220112010200920082007 - December - November - October - SeptemberQuickTime - Remote hacker automatic controliTunes - Remote hacker automatic controlKerberos - Remote hacker automatic controlYahoo! Messenger - Remote hacker automatic control - August - July - June - May - April - March - February - January20062005
Patch Briefs
Reach Us:
Reach us at
info@beskerming.com
Reach us via IM
Jabber:
Server - jabber.org.au
Account - Sunnet.Beskerming
AIM / iChat:
sunnetbeskerming
ICQ:
339742914
Google Talk:
Sunnet.Beskerming
Yahoo! Messenger:
sunnet.beskerming
MSN:
info@beskerming.com
Testimonials
"...extremely timely, accurate reporting..."
"...honesty which is refreshing..."