Published: 30/07/2010 Updated: 19/09/2017

CVSS v2 Base Score: 9.3 | Impact Score: 10 | Exploitability Score: 8.6

VMScore: 828

Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C

Buffer overflow in Apple iTunes prior to 9.2.1 allows remote malicious users to execute arbitrary code or cause a denial of service (application crash) via a crafted itpc: URL.

Vulnerable Product	Search on Vulmon	Subscribe to Product
apple itunes 1.0
apple itunes 2.0.3
apple itunes 2.0.4
apple itunes 3.0
apple itunes 4.5.0
apple itunes 4.6.0
apple itunes 5.0.0
apple itunes 5.0.1
apple itunes 6.0.5
apple itunes 7.0.0
apple itunes 7.0.1
apple itunes 7.3.2
apple itunes 1.1
apple itunes 1.1.1
apple itunes 3.0.1
apple itunes 4.0.0
apple itunes 4.7.0
apple itunes 4.7.1
apple itunes 2.0.1
apple itunes 2.0.2
apple itunes 4.2.0
apple itunes 4.2.72
apple itunes 4.8.0
apple itunes 4.9.0
apple itunes 6.0.4
apple itunes 6.0.4.2
apple itunes 7.3.0
apple itunes 7.3.1
apple itunes 7.6.0
apple itunes 7.6.1
apple itunes 8.0.2.20
apple itunes 8.1.1
apple itunes 8.2.1
apple itunes 9.1.1
apple itunes 9.1
apple itunes 1.1.2
apple itunes 2.0
apple itunes 4.0.1
apple itunes 4.1.0
apple itunes 4.7.1.30
apple itunes 4.7.2
apple itunes 6.0.2
apple itunes 6.0.3
apple itunes 7.1.1
apple itunes 7.2.0
apple itunes 7.4.3
apple itunes 7.5.0
apple itunes 8.0.1
apple itunes 8.0.2
apple itunes 9.0.2
apple itunes 9.0.3
apple itunes 7.4.0
apple itunes 7.6.2
apple itunes 7.7.0
apple itunes 9.0.0
apple itunes 8.1
apple itunes
apple itunes 6.0.0
apple itunes 6.0.1
apple itunes 7.0.2
apple itunes 7.1.0
apple itunes 7.4.1
apple itunes 7.4.2
apple itunes 7.7.1
apple itunes 8.0.0
apple itunes 8.2
apple itunes 9.0.1

CWE-119 http://lists.apple.com/archives/security-announce/2010//Jul/msg00000.html http://support.apple.com/kb/HT4263 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6988 https://nvd.nist.gov

CVE-2010-1777

Vulnerability Summary

Vulnerability Trend

References

Vulmon Search

About

Products

Connect