Test Kennung:	1.3.6.1.4.1.25623.1.0.801105
Kategorie:	Buffer overflow
Titel:	Apple iTunes '.pls' Files Buffer Overflow Vulnerability
Zusammenfassung:	Apple iTunes is prone to a buffer overflow vulnerability.
Beschreibung:	Summary: Apple iTunes is prone to a buffer overflow vulnerability. Vulnerability Insight: The flaw exists in the handling of specially crafted '.pls' files. It fails to bounds-check user-supplied data before copying it into an insufficiently sized buffer. Vulnerability Impact: Successful exploitation will allow attacker to execute arbitrary code within the context of the affected application, failed exploit attempts will result in a denial of service condition. Affected Software/OS: Apple iTunes prior to version 9.0.1 on Windows. Solution: Update to version 9.0.1 or later. CVSS Score: 9.3 CVSS Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C
Querverweis:	Common Vulnerability Exposure (CVE) ID: CVE-2009-2817 http://lists.apple.com/archives/security-announce/2009/Sep/msg00006.html BugTraq ID: 36478 http://www.securityfocus.com/bid/36478 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6290
Copyright	Copyright (C) 2009 Greenbone AG

Dies ist nur einer von 145615 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus. Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.