icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons_061

Apple iTunes < 4.7.1 Playlist Buffer Overflow

High

Synopsis

The remote host is vulnerable to a Denial of Service (DoS) attack.

Description

The remote host is using iTunes, a media player application for Windows and Mac OS X. The remote version of this software is vulnerable to a buffer overflow. This may allow an attacker to execute code on the remote host. An attacker needs to send a malicious playlist to the user to exploit this flaw.

Solution

Upgrade to version 4.7.1 or higher.