CVSS: 8.8EPSS: 1%CPEs: 1EXPL: 0CVE-2009-0143
https://notcve.org/view.php?id=CVE-2009-0143
14 Mar 2009 — Apple iTunes before 8.1 does not properly inform the user about the origin of an authentication request, which makes it easier for remote podcast servers to trick a user into providing a username and password when subscribing to a crafted podcast. Apple iTunes antes de la versión 8.1 no informa adecuadamente al usuario sobre el origen de una solicitud de autenticación, lo que facilita a los servidores podcast remotos a engañar a un usuario para que proporcione su nombre de usuario y contraseña al suscribirs... • http://lists.apple.com/archives/security-announce//2009/Mar/msg00001.html • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 9.8EPSS: 4%CPEs: 2EXPL: 1CVE-2008-5406 – Apple iTunes 8.0.2.20/QuickTime 7.5.5 - '.mov' Multiple Off By Overflows (PoC)
https://notcve.org/view.php?id=CVE-2008-5406
09 Dec 2008 — Stack-based buffer overflow in Apple QuickTime Player 7.5.5 and iTunes 8.0.2.20 allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a MOV file with "long arguments," related to an "off by one overflow." Desbordamiento de búfer basado en pila en Apple QuickTime Player 7.5.5 e iTunes 8.0.2.20, permite a atacantes remotos provocar una denegación de servicio (caída de aplicación) y probablemente la ejecución de código de su elección a través de un arc... • https://www.exploit-db.com/exploits/7296 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 9.3EPSS: 8%CPEs: 2EXPL: 1CVE-2008-4116 – Apple QuickTime 7.5.5 / iTunes 8.0 - Remote Off-by-One Crash
https://notcve.org/view.php?id=CVE-2008-4116
17 Sep 2008 — Buffer overflow in Apple QuickTime 7.5.5 and iTunes 8.0 allows remote attackers to cause a denial of service (browser crash) or possibly execute arbitrary code via a long type attribute in a quicktime tag (1) on a web page or embedded in a (2) .mp4 or (3) .mov file, possibly related to the Check_stack_cookie function and an off-by-one error that leads to a heap-based buffer overflow. Un desbordamiento del búfer en QuickTime versión 7.5.5 y iTunes versión 8.0, de Apple, permite a los atacantes remotos causar... • https://www.exploit-db.com/exploits/6471 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 7.8EPSS: 0%CPEs: 43EXPL: 0CVE-2008-3636
https://notcve.org/view.php?id=CVE-2008-3636
10 Sep 2008 — Integer overflow in the IopfCompleteRequest API in the kernel in Microsoft Windows 2000, XP, Server 2003, and Vista allows context-dependent attackers to gain privileges. NOTE: this issue was originally reported for GEARAspiWDM.sys 2.0.7.5 in Gear Software CD DVD Filter driver before 4.001.7, as used in other products including Apple iTunes and multiple Symantec and Norton products, which allows local users to gain privileges via repeated IoAttachDevice IOCTL calls to \\.\GEARAspiWDMDevice in this GEARAspiW... • http://lists.apple.com/archives/security-announce//2008/Sep/msg00001.html • CWE-189: Numeric Errors •
CVSS: 7.5EPSS: 0%CPEs: 47EXPL: 0CVE-2008-3634
https://notcve.org/view.php?id=CVE-2008-3634
10 Sep 2008 — Apple iTunes before 8.0 on Mac OS X 10.4.11, when iTunes Music Sharing is enabled but blocked by the host-based firewall, presents misleading information about firewall security, which might allow remote attackers to leverage an exposure that would be absent if the administrator were given better information. Aplicación Itunes anterior a la v8 sobre Mac OS X 10.4.11, cuando iTunes Sharing se encuentra habilitado pero bloqueado por el cortafuegos del sistema, muestra información falsa (engañosa) sobre la seg... • http://lists.apple.com/archives/security-announce//2008/Sep/msg00001.html • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 8.1EPSS: 0%CPEs: 30EXPL: 0CVE-2008-3434
https://notcve.org/view.php?id=CVE-2008-3434
01 Aug 2008 — Apple iTunes before 10.5.1 does not properly verify the authenticity of updates, which allows man-in-the-middle attackers to execute arbitrary code via a Trojan horse update, as demonstrated by evilgrade and DNS cache poisoning. Apple iTunes anterior a versión 10.5.1, no comprueba apropiadamente la autenticidad de las actualizaciones, lo que permite a los atacantes de tipo man-in-the-middle ejecutar código arbitrario por medio de una actualización de tipo caballo de troya, como es demostrado por el evilgrad... • http://archives.neohapsis.com/archives/bugtraq/2008-07/0250.html • CWE-94: Improper Control of Generation of Code ('Code Injection') •
CVSS: 9.3EPSS: 12%CPEs: 1EXPL: 0CVE-2007-3752
https://notcve.org/view.php?id=CVE-2007-3752
06 Sep 2007 — Heap-based buffer overflow in Apple iTunes before 7.4 allows remote attackers to cause a denial of service (application crash) or execute arbitrary code via crafted album cover art in the covr atom of an MP4/AAC file. Un desbordamiento de búfer en la región heap de la memoria en iTunes de Apple versiones anteriores a 7.4, permite a atacantes remotos causar una denegación de servicio (bloqueo de aplicación) o ejecutar código arbitrario por medio de una carátula del álbum diseñada en el átomo covr de un archi... • http://docs.info.apple.com/article.html?artnum=306404 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 5.3EPSS: 1%CPEs: 1EXPL: 2CVE-2007-1008 – Apple iTunes 7.0.2 - XML Parsing Remote Denial of Service
https://notcve.org/view.php?id=CVE-2007-1008
20 Feb 2007 — Apple iTunes 7.0.2 allows user-assisted remote attackers to cause a denial of service (application crash) via a crafted XML list of radio stations, which results in memory corruption. NOTE: iTunes retrieves the XML document from a static URL, which requires an attacker to perform DNS spoofing or man-in-the-middle attacks for exploitation. Apple iTunes 7.0.2 permite a atacantes remotos con la intervención el usuario provocar una denegación de servicio (cierre de aplicación) mediante una lista XML manipulada ... • https://www.exploit-db.com/exploits/29616 •
CVSS: 7.8EPSS: 58%CPEs: 1EXPL: 0CVE-2006-1467 – Apple iTunes AAC File Parsing Integer Overflow Vulnerability
https://notcve.org/view.php?id=CVE-2006-1467
29 Jun 2006 — Integer overflow in the AAC file parsing code in Apple iTunes before 6.0.5 on Mac OS X 10.2.8 or later, and Windows XP and 2000, allows remote user-assisted attackers to execute arbitrary code via an AAC (M4P, M4A, or M4B) file with a sample table size (STSZ) atom with a "malformed" sample_size_table value. This vulnerability allows attackers to execute arbitrary code on vulnerable installations of Apple iTunes. Exploitation requires an attacker to convince a target user into opening a malicious play list f... • http://docs.info.apple.com/article.html?artnum=303952 • CWE-189: Numeric Errors •
CVSS: 9.8EPSS: 74%CPEs: 4EXPL: 0CVE-2006-1249
https://notcve.org/view.php?id=CVE-2006-1249
19 Mar 2006 — Integer overflow in Apple QuickTime Player 7.0.3 and 7.0.4 and iTunes 6.0.1 and 6.0.2 allows remote attackers to execute arbitrary code via a FlashPix (FPX) image that contains a field that specifies a large number of blocks. • http://lists.apple.com/archives/security-announce/2006/May/msg00002.html • CWE-189: Numeric Errors •