Apple iTunes < 9.2.1 'itpc:' Buffer Overflow (uncredentialed check)
High Nessus Plugin ID 47763
SynopsisThe remote host contains an application that is affected by a buffer overflow vulnerability.
DescriptionThe version of Apple iTunes on the remote host is prior to version 9.2.1. It is, therefore, affected by a buffer overflow vulnerability in the handling of 'itpc:' URLs. By convincing a user to click on a specially crafted link, a remote attacker can cause a denial of service or execute arbitrary code.
SolutionUpgrade to Apple iTunes 9.2.1 or later.