Apple iTunes < 4.8 MPEG-4 File Handling Overflow
High Nessus Network Monitor Plugin ID 2889
SynopsisThe remote host is vulnerable to a buffer overflow.
DescriptionThe remote host is running iTunes - an application for managing and listening to music media files.
This version of iTunes is vulnerable to a buffer overflow. An attacker exploiting this flaw would need to be able to entice an iTunes user into opening a malformed file. Successful exploitation would result in the attacker executing arbitrary code on the remote system.
SolutionUpgrade to version 4.8 or higher.