This script is Copyright (C) 2010-2012 Tenable Network Security, Inc.
The remote Mac OS X host contains an application affected by multiple
The remote version of iTunes is older than 9.1. Such versions are
potentially affected by multiple vulnerabilities :
- An infinite loop in the application's handling of
imported MP4 podcast files may lead to an application
crash and prevent subsequent operation. (CVE-2010-0531)
- Syncing a mobile device may allow a local user to gain
the privileges of the console user due to an insecure
file operation in the handling of log files.
See also :
Upgrade to iTunes 9.1 or later.
Risk factor :
Medium / CVSS Base Score : 4.3
CVSS Temporal Score : 3.2
Public Exploit Available : false
Family: MacOS X Local Security Checks
Nessus Plugin ID: 45389 (macosx_itunes_9_1.nasl)
Bugtraq ID: 3911342538
CVE ID: CVE-2010-0531CVE-2010-1768
The cookie settings on this website are set to 'allow all cookies' to give you the very best website experience. If you continue without changing these settings, you consent to this - but if you want, you can opt out of all cookies by clicking below.