APPLE-SA-2014-04-01-1

http://support.apple.com/kb/HT6162

http://support.apple.com/kb/HT6163

https://support.apple.com/kb/HT6537

The version of Apple iTunes on the remote host is prior to version 12.0.1. It is, therefore, affected by multiple vulnerabilities related to the included version of WebKit. The errors could lead to application crashes or arbitrary code execution.

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The version of Apple iTunes installed on the remote Windows host is prior to 12.0.1. It is, therefore, affected by multiple vulnerabilities due to the included version of WebKit. The errors could lead to application crashes or arbitrary code execution.

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

Versions of iTunes earlier than 12.0.1 are missing updates that patch memory corruption vulnerabilities within WebKit, as well as a patch that fixes a man-in-the-middle vulnerability that affects encrypted connections to the iTunes Store via iTunes. The most severe of these vulnerabilites can result in arbitrary remote code execution or unexpected application termination.

Versions earlier than the Apple TV 6.1 update are vulnerable to multiple issues, the most serious of which could be leveraged to result in arbitrary code execution.

The remote host has Safari installed that is older than 6.1.3 or 7.0.3, and is thus unpatched for the following WebKit vulnerabilities :

 - Unspecified errors exist that could allow memory corruption, application crashes and possibly arbitrary code execution. (CVE-2013-2871, CVE-2013-2926, CVE-2013-2928, CVE-2013-6625, CVE-2014-1289, CVE-2014-1290, CVE-2014-1291, CVE-2014-1292, CVE-2014-1293, CVE-2014-1294, CVE-2014-1298, CVE-2014-1299, CVE-2014-1300, CVE-2014-1301, CVE-2014-1302, CVE-2014-1303, CVE-2014-1304, CVE-2014-1305, CVE-2014-1307, CVE-2014-1308, CVE-2014-1309, CVE-2014-1310, CVE-2014-1311, CVE-2014-1312, CVE-2014-1313, CVE-2014-1713)
 - An error exists related to IPC messages and 'WebProcess' that could allow an attacker to read arbitrary files. (CVE-2014-1297)

The version of Apple Safari installed on the remote Mac OS X host is a version prior to 6.1.3 or 7.0.3. It is, therefore, potentially affected by the following vulnerabilities related to the included WebKit components :

  - Unspecified errors exist that could allow memory     corruption, application crashes and possibly arbitrary     code execution. (CVE-2013-2871, CVE-2013-2926,     CVE-2013-2928, CVE-2013-6625, CVE-2014-1289,     CVE-2014-1290, CVE-2014-1291, CVE-2014-1292,     CVE-2014-1293, CVE-2014-1294, CVE-2014-1298,     CVE-2014-1299, CVE-2014-1300, CVE-2014-1301,     CVE-2014-1302, CVE-2014-1303, CVE-2014-1304,     CVE-2014-1305, CVE-2014-1307, CVE-2014-1308,     CVE-2014-1309, CVE-2014-1310, CVE-2014-1311,     CVE-2014-1312, CVE-2014-1313, CVE-2014-1713)

  - An error exists related to IPC messages and 'WebProcess'     that could allow an attacker to read arbitrary files.
    (CVE-2014-1297)

According to its banner, the remote Apple TV 2nd generation or later device is prior to 6.1. It is, therefore, reportedly affected by multiple vulnerabilities, the most serious issues of which could result in arbitrary code execution.

According to its banner, the remote Apple iOS device is missing a security update.  Versions of Apple iOS prior to 7.1 are affected by vulnerabilities within the following components :

  - Backup
  - Certificate Trust Policy
  - Configuration Profiles
  - CoreCapture
  - Crash Reporting
  - dyld
  - FaceTime
  - ImageIO
  - IOKit HID Event
  - iTunes Store
  - Kernel
  - Office Viewer
  - Photos Backend
  - Profiles
  - Safari
  - Find My iPhone status
  - Springboard
  - SpringBoard Lock Screen
  - TelephonyUI Framework
  - USB Host
  - Video Driver
  - WebKit

The mobile device is running a version of iOS that is prior to version 7.1. It is, therefore, affected by vulnerabilities in the following components :

  - Backup
  - Certificate Trust Policy
  - Configuration Profiles
  - CoreCapture
  - Crash Reporting
  - dyld
  - FaceTime
  - ImageIO
  - IOKit HID Event
  - iTunes Store
  - Kernel
  - Office Viewer
  - Photos Backend
  - Profiles
  - Safari
  - Settings - Accounts
  - Springboard
  - SpringBoard Lock Screen
  - TelephonyUI Framework
  - USB Host
  - Video Driver
  - WebKit

ID	Name	Product	Family	Severity
78598	Apple iTunes < 12.0.1 Multiple Vulnerabilities (uncredentialed check)	Nessus	Peer-To-Peer File Sharing	critical
78597	Apple iTunes < 12.0.1 Multiple Vulnerabilities (credentialed check)	Nessus	Windows	critical
8561	iTunes < 12.0.1 Multiple Vulnerabilities	Nessus Network Monitor	Web Clients	critical
8250	Apple TV < 6.1 Multiple Vulnerabilities	Nessus Network Monitor	Internet Services	high
8209	Safari < 6.1.3 / 7.0.3 Multiple Vulnerabilities	Nessus Network Monitor	Web Clients	high
73304	Mac OS X : Apple Safari < 6.1.3 / 7.0.3 Multiple Vulnerabilities	Nessus	MacOS X Local Security Checks	critical
72962	Apple TV < 6.1 Multiple Vulnerabilities	Nessus	Misc.	high
8155	Apple iOS < 7.1 Multiple Vulnerabilities	Nessus Network Monitor	Mobile Devices	high
72907	Apple iOS < 7.1 Multiple Vulnerabilities	Nessus	Mobile Devices	high

CVE-2014-1292

medium

New! CVE Severity Now Using CVSS v3

Description

References

Details

Risk Information

CVSS v2

Vulnerable Software

Configuration 1

Configuration 2

Tenable Plugins

critical

critical

critical

high

high

critical

high

high

high