iTunes for Windows < 11.1.4 Multiple Vulnerabilities

high Nessus Network Monitor Plugin ID 8095
New! Plugin Severity Now Using CVSS v3

The calculated severity for Plugins has been updated to use CVSS v3 by default. Plugins that do not have a CVSS v3 score will fall back to CVSS v2 for calculating severity. Severity display preferences can be toggled in the settings dropdown.

Synopsis

The remote host is running a multimedia application that is out of date and thus may contain vulnerabilities.

Description

Versions of iTunes earlier than 11.1.4 are reportedly affected by the following vulnerabilities:

- An uninitialized memory access issue in the handling of text tracks could be leveraged for arbitrary code execution via a malicious movie file.

- Multiple memory corruption issues exist in WebKit, which can be leveraged for arbitrary code execution via a man-in-the-middle attack.

- Multiple memory corruption issues exist in the libxml library, which could be leveraged to execute arbitrary code via a man-in-the-middle attack; this library has since been updated.

- Multiple memory corruption issues exist in the libxslt library, which could be leveraged to execute arbitrary code via a man-in-the-middle attack; this library has since been updated.

Solution

Upgrade to iTunes 11.1.4 or later.

See Also

http://support.apple.com/kb/HT6001

http://seclists.org/bugtraq/2014/Jan/86

https://www.hkcert.org/my_url/en/alert/14012401

Plugin Details

Severity: High

ID: 8095

Family: Web Clients

Published: 1/30/2013

Updated: 3/6/2019

Risk Information

CVSS v2

Risk Factor: High

Base Score: 9.3

Temporal Score: 6.9

Vector: CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C

Temporal Vector: CVSS2#E:U/RL:OF/RC:C

CVSS v3

Risk Factor: High

Base Score: 8.1

Temporal Score: 7.5

Vector: CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

Temporal Vector: CVSS:3.0/E:F/RL:O/RC:C

Vulnerability Information

CPE: cpe:2.3:a:apple:itunes:*:*:*:*:*:*:*:*

Patch Publication Date: 1/22/2013

Vulnerability Publication Date: 1/22/2014

Reference Information

CVE: CVE-2012-2825, CVE-2012-0841, CVE-2011-3102, CVE-2012-2807, CVE-2012-2870, CVE-2012-2871, CVE-2012-5134, CVE-2013-5125, CVE-2013-1037, CVE-2013-1047, CVE-2013-5126, CVE-2013-1041, CVE-2013-1042, CVE-2013-1043, CVE-2013-1024, CVE-2013-2842, CVE-2013-1040, CVE-2013-5127, CVE-2013-1044, CVE-2013-1045, CVE-2013-1039, CVE-2013-1038, CVE-2013-1046, CVE-2013-5128

IAVA: 2012-A-0153, 2012-A-0148, 2013-A-0031