Download
| Alert*
|
oval:org.secpod.oval:def:20050
The host is installed with Apple iTunes before 11.2 and is prone to information disclosure vulnerability. A flaw is present in the application, which fails to properly handle Set-Cookie HTTP headers. Successful exploitation could allow attackers to strip security settings from the cookie by forcing ... oval:org.secpod.oval:def:20051 The host is missing an important security update according to Apple security advisory, APPLE-SA-2014-05-15-2. The update is required to fix information disclosure vulnerability. A flaw is present in the application, which fails to properly handle Set-Cookie HTTP headers. Successful exploitation coul ... oval:org.mitre.oval:def:7604 Unspecified vulnerability in Apple iTunes before 9.1 allows local users to gain console privileges via vectors related to log files, "insecure file operation," and syncing an iPhone, iPad, or iPod touch. oval:org.secpod.oval:def:4847 The host is missing an important security update according to Apple advisory, APPLE-SA-2009-03-11. The update is required to fix multiple denial of service vulnerabilities. The flaws are present in the application, which fails to sanitize user supplied input. Successful exploitation could allow atta ... oval:org.mitre.oval:def:7995 Buffer overflow in Apple QuickTime 7.5.5 and iTunes 8.0 allows remote attackers to cause a denial of service (browser crash) or possibly execute arbitrary code via a long type attribute in a quicktime tag (1) on a web page or embedded in a (2) .mp4 or (3) .mov file, possibly related to the Check_sta ... oval:org.secpod.oval:def:34501 The host is installed with Apple iTunes before 12.4 and is prone to an arbitrary code execution vulnerability. A flaw is present in the application, which fails to properly handle iTunes installer when run in an untrusted directory. Successful exploitation could allow attackers to execute arbitrary ... oval:org.secpod.oval:def:34502 The host is missing a security update according to Apple advisory, APPLE-SA-2016-05-16-6. The update is required to fix an arbitrary code execution vulnerability. A flaw is present in the application, which fails to properly handle iTunes installer when run in an untrusted directory. Successful expl ... oval:org.secpod.oval:def:1810 The host is installed with Apple Safari version less than or equal to 5.0.5 or Apple iTunes before 10.5 and is prone to denial of service vulnerability. A flaw is present in the application which fails to handle crafted web site. Successful exploitation allows remote attackers to execute arbitrary c ... oval:org.secpod.oval:def:1811 The host is installed with Apple Safari version less than or equal to 5.0.5 or Apple iTunes before 10.5 and is prone to denial of service vulnerability. A flaw is present in the application which fails to handle crafted web site. Successful exploitation allows remote attackers to execute arbitrary c ... oval:org.secpod.oval:def:1805 The host is installed with Apple Safari version less than or equal to 5.0.5 or Apple iTunes before 10.5 and is prone to denial of service vulnerability. A flaw is present in the application which fails to handle crafted web site. Successful exploitation allows remote attackers to execute arbitrary c ... oval:org.secpod.oval:def:1804 The host is installed with Apple Safari version less than or equal to 5.0.5 or Apple iTunes before 10.5 and is prone to arbitrary code execution vulnerability. A flaw is present in the application which fails to handle libxslt security settings in webKit. Successful exploitation allows remote attack ... oval:org.secpod.oval:def:1807 The host is installed with Apple Safari version less than or equal to 5.0.5 or Apple iTunes before 10.5 is prone to denial of service vulnerability. A flaw is present in the application which fails to handle crafted web site. Successful exploitation allows remote attackers to execute arbitrary code ... oval:org.secpod.oval:def:1806 The host is installed with Apple Safari version less than or equal to 5.0.5 or Apple iTunes before 10.5 and is prone to denial of service vulnerability. A flaw is present in the application which fails to handle crafted web site. Successful exploitation allows remote attackers to execute arbitrary c ... oval:org.secpod.oval:def:1809 The host is installed with Apple Safari version less than or equal to 5.0.5 and is prone to denial of service vulnerability. A flaw is present in the application which fails to handle crafted web site. Successful exploitation allows remote attackers to execute arbitrary code or cause a denial of ser ... oval:org.secpod.oval:def:1808 The host is installed with Apple Safari version less than or equal to 5.0.5 or Apple iTunes before 10.5 and is prone to denial of service vulnerability. A flaw is present in the application which fails to handle crafted web site. Successful exploitation allows remote attackers to execute arbitrary c ... oval:org.secpod.oval:def:1821 The host is installed with Apple Safari version less than or equal to 5.0.5 or Apple iTunes version less than 10.5 and is prone to denial of service vulnerability. A flaw is present in the application which fails to handle crafted web site. Successful exploitation allows remote attackers to execute ... oval:org.secpod.oval:def:1820 The host is installed with Apple Safari version less than or equal to 5.0.5 or Apple iTunes before 10.5 and is prone to denial of service vulnerability. A flaw is present in the application which fails to handle crafted web site. Successful exploitation allows remote attackers to execute arbitrary c ... oval:org.secpod.oval:def:1823 The host is installed with Apple Safari version less than or equal to 5.0.5 or Apple iTunes less than 10.5 and is prone to denial of service vulnerability. A flaw is present in the application which fails to handle crafted web site. Successful exploitation allows remote attackers to execute arbitrar ... oval:org.secpod.oval:def:1822 The host is installed with Apple Safari version less than or equal to 5.0.5 or Apple iTunes version less than 10.5 and is prone to denial of service vulnerability. A flaw is present in the application which fails to handle crafted web site. Successful exploitation allows remote attackers to execute ... oval:org.secpod.oval:def:1824 The host is installed with Apple Safari version less than or equal to 5.0.5 or Apple iTunes less than 10.5 and is prone to denial of service vulnerability. A flaw is present in the application which fails to handle crafted web site. Successful exploitation allows remote attackers to execute arbitrar ... oval:org.secpod.oval:def:1816 The host is installed with Apple Safari version less than or equal to 5.0.5 or Apple iTunes before 10.5 and is prone to denial of service vulnerability. A flaw is present in the application which fails to handle crafted web site. Successful exploitation allows remote attackers to execute arbitrary c ... oval:org.secpod.oval:def:1815 The host is installed with Apple Safari version less than or equal to 5.0.5 or Apple iTunes before 10.5 and is prone to denial of service vulnerability. A flaw is present in the application which fails to handle crafted web site. Successful exploitation allows remote attackers to execute arbitrary c ... oval:org.secpod.oval:def:1818 The host is installed with Apple Safari version less than or equal to 5.0.5 or Apple iTunes before 10.5 and is prone to denial of service vulnerability. A flaw is present in the application which fails to handle crafted web site. Successful exploitation allows remote attackers to execute arbitrary c ... oval:org.secpod.oval:def:1817 The host is installed with Apple Safari version less than or equal to 5.0.5 or Apple iTunes before 10.5 and is prone to denial of service vulnerability. A flaw is present in the application which fails to handle crafted web site. Successful exploitation allows remote attackers to execute arbitrary c ... oval:org.secpod.oval:def:1819 The host is installed with Apple Safari version less than or equal to 5.0.5 or Apple iTunes before 10.5 and is prone to denial of service vulnerability. A flaw is present in the application which fails to handle crafted web site. Successful exploitation allows remote attackers to execute arbitrary c ... oval:org.secpod.oval:def:1830 The host is installed with Apple Safari version less than or equal to 5.0.5 or Apple iTunes less than 10.5 and is prone to denial of service vulnerability. A flaw is present in ImageIO in the application which fails to handle a crafted TIFF image. Successful exploitation allows remote attackers to e ... oval:org.secpod.oval:def:1827 The host is installed with Apple Safari version less than or equal to 5.0.5 or Apple iTunes version less than 10.5 and is prone to denial of service vulnerability. A flaw is present in the application which fails to handle crafted web site. Successful exploitation allows remote attackers to execute ... oval:org.secpod.oval:def:1826 The host is installed with Apple Safari version less than or equal to 5.0.5 or Apple iTunes less than 10.5 and is prone to denial of service vulnerability. A flaw is present in the application which fails to handle crafted web site. Successful exploitation allows remote attackers to execute arbitrar ... oval:org.secpod.oval:def:43206 The host is installed with Apple iCloud before 7.2 or Apple iTunes before 12.7.2 and is prone to a privilege escalation vulnerability. A flaw is present in the application, which fails to handle client certificates. Successful exploitation could allow attacker in a privileged network position to tra ... oval:org.secpod.oval:def:9743 The host is installed with Google Chrome before 25.0.1364.160 or Apple iTunes before 11.0.3 and is prone to a remote code execution vulnerability. A flaw is present in the application, which fails to handle vectors that leverage type confusion. Successful exploitation could allow attackers to execut ... oval:org.secpod.oval:def:46288 The host is installed with Apple iCloud before 7.6 or Apple iTunes before 12.8 and is prone to an cookie management vulnerability. A flaw is present in the application, which fails to properly handle maliciously crafted content. Successful exploitation could allow attackers to execute arbitrary code ... oval:org.secpod.oval:def:44782 The host is installed with Apple iCloud before 7.4 or Apple iTunes before 12.7.4 and is prone to a buffer overflow vulnerability. A flaw is present in the application, which fails to properly perform size validation. Successful exploitation could allow attackers to elevate privileges. oval:org.secpod.oval:def:83301 The host is installed with Apple iTunes before 12.7.4 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle issues in memory handling. Successful exploitation allows attackers to cause arbitrary code execution while processing a malic ... oval:org.secpod.oval:def:83302 The host is installed with Apple iTunes before 12.7.3 and is prone to a multiple memory corruption vulnerability. A flaw is present in the application, which fails to properly handle issues in memory handling. Successful exploitation allows attackers to cause arbitrary code execution while processin ... oval:org.secpod.oval:def:83303 >The host is installed with Apple iTunes before 12.7.5 and is prone to an arbitrary code execution vulnerability. A flaw is present in the applications, which fail to properly handle issues in input validation. Successful exploitation allows attackers to cause arbitrary code execution while processi ... oval:org.secpod.oval:def:83304 The host is installed with Apple iTunes before 12.7.4 and is prone to an unspecified vulnerability. A flaw is present in the application, which fail to properly handle issues in checks. Successful exploitation allows attackers to cause an assert failure through unexpected interaction. oval:org.secpod.oval:def:83305 The host is installed with Apple iTunes before 12.7.4 and is prone to a unspecified vulnerability. A flaw is present in the application, which fail to properly handle issues in checks. Successful exploitation allows attackers to cause an assert failure through unexpected interaction. oval:org.secpod.oval:def:83306 The host is installed with Apple iTunes before 12.7.4 and is prone to a unspecified vulnerability. A flaw is present in the application, which fail to properly handle issues in checks. Successful exploitation allows attackers to cause an assert failure through unexpected interaction. oval:org.secpod.oval:def:83307 The host is installed with Apple iTunes before 12.7.4 and is prone to a array indexing vulnerability. A flaw is present in the applications, which fail to properly handle issues in checks. Successful exploitation allows attackers to cause an failure with indexing types through unexpected interaction ... oval:org.secpod.oval:def:83308 The host is installed with Apple iTunes before 12.7.4 and is prone to a unspecified vulnerability. A flaw is present in the application, which fail to properly handle issues in checks. Successful exploitation allows attackers to cause an assert failure through unexpected interaction. oval:org.secpod.oval:def:83309 The host is installed with Apple iTunes before 12.7.4 and is prone to a unspecified vulnerability. A flaw is present in the application, which fail to properly handle issues in checks. Successful exploitation allows attackers to cause an assert failure through unexpected interaction. oval:org.secpod.oval:def:83310 The host is installed with Apple iTunes before 12.8 and is prone to a memory corruption vulnerability. A flaw is present in the applications, which fail to properly handle issues in input validation. On Successful exploitation, a malicious application may be able to break out of its sandbox. oval:org.secpod.oval:def:83311 The host is installed with Apple iTunes before 12.9.2 and is prone to a logic vulnerability. A flaw is present in the applications, which fail to properly handle issues in state management. On successful exploitation, processing maliciously crafted web content may disclose sensitive user information ... oval:org.secpod.oval:def:83312 The host is installed with Apple iTunes before 12.9 and is prone to a memory consumption vulnerability. A flaw is present in the applications, which fail to properly handle issues in memory handling. Successful exploitation allows attackers to cause an assert failure through unexpected interaction. oval:org.secpod.oval:def:83313 The host is installed with Apple iTunes before 12.9.3 and is prone to a logic vulnerability. A flaw is present in the applications, which fail to properly handle issues in state management. On successful exploitation, processing maliciously crafted web content may disclose sensitive user information ... oval:org.secpod.oval:def:83315 The host is installed with Apple iTunes before 12.9.4 and is prone to a memory corruption vulnerability. A flaw is present in the applications, which fail to properly handle issues in memory handling. Successful exploitation allows attackers to cause arbitrary code execution while processing a malic ... oval:org.secpod.oval:def:83316 The host is installed with Apple iTunes before 12.9.4 and is prone to a memory corruption vulnerability. A flaw is present in the applications, which fail to properly handle issues in memory handling. Successful exploitation allows attackers to cause arbitrary code execution while processing a malic ... oval:org.secpod.oval:def:83329 The host is installed with Apple iTunes before 12.10.3 and is prone to a security bypass vulnerability. A flaw is present in the application, which fails to properly handle configuration issue. Successful exploitation allows an attacker in a privileged network position to bypass HSTS for a limited n ... oval:org.secpod.oval:def:83330 The host is installed with Apple iTunes before 12.10.3 and is prone to a information disclosure vulnerability. A flaw is present in the application, which fails to properly handle Storage Access API. Successful exploitation could allow attackers to reveal sites a user has visited when a maliciously ... oval:org.mitre.oval:def:7180 Use-after-free vulnerability in WebKit in Apple Safari before 5.0 or Apple iTunes before 9.2 on Windows, allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via vectors related to the Cascading Style Sheets (CSS) run-in property and multiple invocations ... oval:org.mitre.oval:def:7178 WebKit in Apple iTunes before 9.2 on Windows, and Apple iOS before 4 on the iPhone and iPod touch, accesses out-of-bounds memory during the handling of tables, which allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted HTML document, a diff ... oval:org.mitre.oval:def:11916 The host is installed with Google Chrome before before 8.0.552.215, Apple Safari before 5.0.4 and earlier or Apple iTunes before 10.2 and is prone to double free vulnerability. The flaw is present in application, which fails to handle vectors related to XPath handling. Successful exploitation allows ... oval:org.mitre.oval:def:7157 Use-after-free vulnerability in WebKit in Apple Safari before 5.0 or iTunes before 9.2 on Windows, allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via vectors involving HTML document subtrees. oval:org.secpod.oval:def:30651 The host is installed with Apple iTunes before 12.3.1 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:30652 The host is installed with Apple iTunes before 12.3.1 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.mitre.oval:def:7150 WebKit in Apple Safari before 5.0 or iTunes before 9.2 on Windows, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via an SVG document with nested use elements. oval:org.mitre.oval:def:7151 Use-after-free vulnerability in WebKit, as used in Apple iTunes before 10.2 on Windows, Apple Safari, and Google Chrome before 6.0.472.59, allows remote attackers to execute arbitrary code or cause a denial of service via vectors related to SVG styles, the DOM tree, and error messages. oval:org.secpod.oval:def:30650 The host is installed with Apple iTunes before 12.3.1 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:30644 The host is installed with Apple iTunes before 12.3.1 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:30645 The host is installed with Apple iTunes before 12.3.1 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:30646 The host is installed with Apple iTunes before 12.3.1 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:30647 The host is installed with Apple iTunes before 12.3.1 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:30648 The host is installed with Apple iTunes before 12.3.1 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:30649 The host is installed with Apple iTunes before 12.3.1 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:62222 The host is installed with Apple iTunes before 12.10.5 or iCloud before 7.18 and is prone to a privilege escalation vulnerability. A flaw is present in the application, which fails to properly handle a logic issue. Successful exploitation could lead to a file URL being incorrectly processed. oval:org.secpod.oval:def:62221 The host is installed with Apple iTunes before 12.10.5 or iCloud before 7.18 and is prone to a cross-site scripting vulnerability. A flaw is present in the application, which fails to properly handle an input validation issue. Successful exploitation could allow an attacker to launch a cross site sc ... oval:org.secpod.oval:def:7353 The host is installed with Google Chrome before 22.0.1229.94 or Apple iTunes 11.0.3 and is prone to use-after-free vulnerability. A flaw is present in the application, which fails to properly handle SVG implementation in WebKit. Successful exploitation allows attackers to execute arbitrary code via ... oval:org.mitre.oval:def:6912 Use-after-free vulnerability in WebKit in Apple Safari before 5.0 or Apple iTunes before 9.2 on Windows, allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via vectors related to a layout change during selection rendering and the DOCUMENT_POSITION_DISC ... oval:org.mitre.oval:def:6901 ImageIO in Apple Safari before 4.0.5 and iTunes before 9.1 on Windows allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted TIFF image. oval:org.secpod.oval:def:62220 The host is installed with Apple iTunes before 12.10.5 or iCloud before 7.18 and is prone to a memory consumption vulnerability. A flaw is present in the application, which fails to properly handle a memory issue. Successful exploitation could allow a remote attacker to execute arbitrary code. oval:org.secpod.oval:def:62219 The host is installed with Apple iTunes before 12.10.5 or iCloud before 7.18 and is prone to a use-after-free vulnerability. A flaw is present in the application, which fails to properly handle a memory management issue. Successful exploitation could allow an attacker to execute code. oval:org.secpod.oval:def:62218 The host is installed with Apple iTunes before 12.10.5 or iCloud before 7.18 and is prone to a type confusion vulnerability. A flaw is present in the application, which fails to properly handle a memory issue. Successful exploitation could allow a remote attacker to execute arbitrary code. oval:org.mitre.oval:def:12148 The host is installed with Google Chrome before 7.0.517.44, Apple Safari 5.0.2 and earlier or Apple iTunes before 10.2 and is prone to memory corruption vulnerability. The flaw is present in the ibxml2 before 2.7.8, which reads from invalid memory locations during processing of malformed XPath expre ... oval:org.secpod.oval:def:62217 The host is installed with Apple iTunes before 12.10.5 or iCloud before 7.18 and is prone to a race condition vulnerability. A flaw is present in the application, which fails to properly handle a validation issue. Successful exploitation could allow aan attacker to read restricted memory. oval:org.secpod.oval:def:62216 The host is installed with Apple iTunes before 12.10.5 or iCloud before 7.18 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a memory issue. Successful exploitation could allow an attacker to execute arbitrary code. oval:org.secpod.oval:def:62215 The host is installed with Apple iTunes before 12.10.5 or iCloud before 7.18 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a memory issue. Successful exploitation could allow an attacker to execute arbitrary code. oval:org.secpod.oval:def:62214 The host is installed with Apple iTunes before 12.10.5 or iCloud before 7.18 and is prone to a privilege escalation vulnerability. A flaw is present in the application, which fails to properly handle a logic issue. Successful exploitation could lead to a download's origin being incorrectly associate ... oval:org.secpod.oval:def:62213 The host is installed with Apple iTunes before 12.10.5 or iCloud before 7.18 and is prone to a type confusion vulnerability. A flaw is present in the applications, which fail to properly handle a memory issue. Successful exploitation could allow attackers to execute arbitrary code. oval:org.secpod.oval:def:38365 The host is installed with Apple iTunes before 12.5.4 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle maliciously crafted web content. Successful exploitation could allow attackers to execute arbitrary code. oval:org.secpod.oval:def:38366 The host is installed with Apple iTunes before 12.5.4 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle maliciously crafted web content. Successful exploitation could allow attackers to execute arbitrary code. oval:org.secpod.oval:def:49659 The host is installed with Apple iTunes before 12.9.2 or Apple iCloud before 7.9 and is prone to an arbitrary code execution vulnerability. The flaws are present in the application, which fail to properly handle multiple memory corruption issues. Successful exploitation could allow attackers to perf ... oval:org.secpod.oval:def:38360 The host is installed with Apple iTunes before 12.5.4 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle maliciously crafted web content. Successful exploitation could allow attackers to execute arbitrary code. oval:org.secpod.oval:def:38362 The host is installed with Apple iTunes before 12.5.4 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle maliciously crafted web content. Successful exploitation could allow attackers to execute arbitrary code. oval:org.secpod.oval:def:38364 The host is installed with Apple iTunes before 12.5.4 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle maliciously crafted web content. Successful exploitation could allow attackers to execute arbitrary code. oval:org.secpod.oval:def:49660 The host is installed with Apple iTunes before 12.9.2 or Apple iCloud before 7.9 and is prone to an arbitrary code execution vulnerability. A flaw is present in the application, which fail to properly handle a memory corruption issue. Successful exploitation could allow attackers to perform arbitrar ... oval:org.secpod.oval:def:49661 The host is installed with Apple iTunes before 12.9.2 or Apple iCloud before 7.9 and is prone to an arbitrary code execution vulnerability. A flaw is present in the application, which fail to properly handle a memory corruption issue. Successful exploitation could allow attackers to perform arbitrar ... oval:org.secpod.oval:def:48579 The host is installed with Apple iTunes before 12.9.1 or Apple iCloud before 7.8 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fail to properly handle crafted web content. Successful exploitation could allow attackers to execute arbitrary code. oval:org.secpod.oval:def:48577 The host is installed with Apple iTunes before 12.9.1 or Apple iCloud before 7.8 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fail to properly handle crafted web content. Successful exploitation could allow attackers to execute arbitrary code. oval:org.secpod.oval:def:48578 The host is installed with Apple iTunes before 12.9.1 or Apple iCloud before 7.8 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fail to properly handle crafted web content. Successful exploitation could allow attackers to execute arbitrary code. oval:org.secpod.oval:def:48575 The host is installed with Apple iTunes before 12.9.1 or Apple iCloud before 7.8 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fail to properly handle crafted web content. Successful exploitation could allow attackers to execute arbitrary code. oval:org.secpod.oval:def:49664 The host is missing a security update according to Apple advisory, APPLE-SA-2018-12-05-5. The update is required to fix multiple vulnerabilities. The flaws are present in the application, which fail to properly handle validation or memory corruption issues. Successful exploitation could allow attack ... oval:org.secpod.oval:def:48576 The host is installed with Apple iTunes before 12.9.1 or Apple iCloud before 7.8 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fail to properly handle crafted web content. Successful exploitation could allow attackers to execute arbitrary code. oval:org.secpod.oval:def:48573 The host is installed with Apple iTunes before 12.9.1 or Apple iCloud before 7.8 and is prone to an universal XSS vulnerability. A flaw is present in the application, which fail to properly handle a crafted webpage. Successful exploitation could allow attackers to inject arbitrary code. oval:org.secpod.oval:def:49662 The host is installed with Apple iTunes before 12.9.2 or Apple iCloud before 7.9 and is prone to an arbitrary code execution vulnerability. A flaw is present in the application, which fail to properly handle a memory corruption issue. Successful exploitation could allow attackers to perform arbitrar ... oval:org.secpod.oval:def:48574 The host is installed with Apple iTunes before 12.9.1 or Apple iCloud before 7.8 and is prone to an universal XSS vulnerability. A flaw is present in the application, which fail to properly handle a crafted webpage. Successful exploitation could allow attackers to inject arbitrary code. oval:org.secpod.oval:def:49663 The host is installed with Apple iTunes before 12.9.2 or Apple iCloud before 7.9 and is prone to an arbitrary code execution vulnerability. A flaw is present in the application, which fail to properly handle a logic issue. Successful exploitation could allow attackers to perform arbitrary code execu ... oval:org.secpod.oval:def:38358 The host is installed with Apple iTunes before 12.5.4 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle maliciously crafted web content. Successful exploitation could lead to disclosure of user information. oval:org.secpod.oval:def:48582 The host is installed with Apple iTunes before 12.9.1 or Apple iCloud before 7.8 and is prone to a denial of service vulnerability. A flaw is present in the application, which fail to properly handle input validation. Successful exploitation could allow attackers to crash the service. oval:org.secpod.oval:def:48583 The host is installed with Apple iTunes before 12.9.1 or Apple iCloud before 7.8 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fail to properly handle input validation. Successful exploitation could allow attackers to crash the service. oval:org.secpod.oval:def:48580 The host is installed with Apple iTunes before 12.9.1 or Apple iCloud before 7.8 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fail to properly handle crafted web content. Successful exploitation could allow attackers to execute arbitrary code. oval:org.secpod.oval:def:48581 The host is installed with Apple iTunes before 12.9.1 or Apple iCloud before 7.8 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fail to properly handle crafted web content. Successful exploitation could allow attackers to execute arbitrary code. oval:org.secpod.oval:def:48584 The host is installed with Apple iTunes before 12.9.1 or Apple iCloud before 7.8 and is prone to a denial of service vulnerability. A flaw is present in the application, which fail to properly handle input validation. Successful exploitation could allow attackers to crash the service. oval:org.mitre.oval:def:6709 WebKit in Apple Safari before 5.0 or iTunes before 9.2 on Windows, accesses uninitialized memory during a selection change on a form input element, which allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted HTML document. oval:org.secpod.oval:def:469 The host is installed with Google Chrome before 10.0.648.127, Apple Safari before 5.0.6 or Apple iTunes before 10.5 and is prone to memory corruption vulnerability. A flaw is present in the applications which do not properly handle counter nodes. Successful exploitation allow remote attackers to cau ... oval:org.mitre.oval:def:12353 Apple iTunes (32 bit) is installed oval:org.secpod.oval:def:482 The host is installed Google Chrome before 10.0.648.127, Apple Safari before 5.0.6 or Apple iTunes before 10.5 and is prone to denial of service vulnerability. A flaw is present in the application which does not properly handle attributes. Successful exploitation allow remote attackers to cause a de ... oval:org.secpod.oval:def:483 The host is installed with Google Chrome before 10.0.648.127, Apple Safari before 5.0.6 or Apple iTunes before 10.5 and is prone to denial of service vulnerability. A flaw is present in the applications which does not properly handle SVG cursors. Successful exploitation allow remote attackers to cau ... oval:org.secpod.oval:def:332 The host is installed with Apple iTunes before 10.2 or Apple Safari before 5.0.4 and is prone to denial of service vulnerability. A flaw is present in Cascading Style Sheets (CSS) 2.1 Visual Formatting Model implementation in WebKit, which fails to prevent man-in-the-middle attack while browsing the ... oval:org.secpod.oval:def:331 The host is installed with Apple iTunes before 10.2 or Apple Safari before 5.0.4 and is prone to denial of service vulnerability. A flaw is present in WebKit, which fails to prevent man-in-the-middle attack while browsing the iTunes Store via iTunes. Successful exploitation could allow remote attack ... oval:org.secpod.oval:def:334 The host is installed with Apple iTunes before 10.2 or Apple Safari before 5.0.4 and is prone to denial of service vulnerability. A flaw is present in WebKit, which fails to prevent man-in-the-middle attack while browsing the iTunes Store via iTunes. Successful exploitation could allow remote attack ... oval:org.secpod.oval:def:333 The host is installed Apple iTunes before 10.2 or Apple Safari before 5.0.4 and is prone to denial of service vulnerability. A flaw is present in WebKit, which fails to handle glyph data during layout actions for floating blocks associated with pseudo-elements. Successful exploitation could allow re ... oval:org.secpod.oval:def:330 The host is installed with Apple iTunes before 10.2 or Apple Safari before 5.0.4 and is prone to denial of service vulnerability. A flaw is present in WebKit, which fails to prevent man-in-the-middle attack while browsing the iTunes Store via iTunes. Successful exploitation could allow remote attack ... oval:org.secpod.oval:def:329 The host is installed with Apple iTunes before 10.2 or Apple Safari before 5.0.4 and is prone to denial of service vulnerability. A flaw is present in WebKit, which fails to prevent man-in-the-middle attack while browsing the iTunes Store via iTunes. Successful exploitation could allow remote attack ... oval:org.secpod.oval:def:328 The host is installed with Apple iTunes before 10.2 or Apple Safari before 5.0.4 and is prone to denial of service vulnerability. A flaw is present in WebKit, which fails to prevent man-in-the-middle attack while browsing the iTunes Store via iTunes. Successful exploitation could allow remote attack ... oval:org.secpod.oval:def:7190 The host is installed with Apple iTunes before 10.7 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:7191 The host is installed with Apple iTunes before 10.7 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:325 The host is installed with Apple iTunes before 10.2 or Apple Safari before 5.0.4 and is prone to denial of service vulnerability. A flaw is present in WebKit, which fails to prevent man-in-the-middle attack while browsing the iTunes Store via iTunes. Successful exploitation could allow remote attack ... oval:org.secpod.oval:def:324 The host is installed with Apple iTunes before 10.2 or Apple Safari before 5.0.4 and is prone to denial of service vulnerability. A flaw is present in WebKit, which fails to prevent man-in-the-middle attack while browsing the iTunes Store via iTunes. Successful exploitation could allow remote attack ... oval:org.secpod.oval:def:327 The host is installed with Apple iTunes before 10.2 or Apple Safari before 5.0.4 and is prone to denial of service vulnerability. A flaw is present in WebKit, which fails to prevent man-in-the-middle attack while browsing the iTunes Store via iTunes. Successful exploitation could allow remote attack ... oval:org.secpod.oval:def:326 The host is installed with Apple iTunes before 10.2 or Apple Safari before 5.0.4 and is prone to denial of service vulnerability. A flaw is present in WebKit, which fails to prevent man-in-the-middle attack while browsing the iTunes Store via iTunes. Successful exploitation could allow remote attack ... oval:org.secpod.oval:def:7196 The host is installed with Apple iTunes before 10.7 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:7197 The host is installed with Apple iTunes before 10.7 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:7198 The host is installed with Apple iTunes before 10.7 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:7199 The host is installed with Apple iTunes before 10.7 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:7192 The host is installed with Apple iTunes before 10.7 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:7193 The host is installed with Apple iTunes before 10.7 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:7194 The host is installed with Apple iTunes before 10.7 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:7195 The host is installed with Apple iTunes before 10.7 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:343 The host is installed with Apple iTunes before 10.2 or Apple Safari before 5.0.4 and is prone to denial of service vulnerability. A flaw is present in WebKit, which fails to prevent man-in-the-middle attack while browsing the iTunes Store via iTunes. Successful exploitation could allow remote attack ... oval:org.secpod.oval:def:342 The host is installed with Apple iTunes before 10.2 or Apple Safari before 5.0.4 and is prone to denial of service vulnerability. A flaw is present in WebKit, which fails to prevent man-in-the-middle attack while browsing the iTunes Store via iTunes. Successful exploitation could allow remote attack ... oval:org.secpod.oval:def:345 The host is installed with Apple iTunes before 10.2 or Apple Safari before 5.0.4 and is prone to denial of service vulnerability. A flaw is present in WebKit, which fails to prevent man-in-the-middle attack while browsing the iTunes Store via iTunes. Successful exploitation could allow remote attack ... oval:org.secpod.oval:def:344 The host is installed with Apple iTunes before 10.2 or Apple Safari before 5.0.4 and is prone to denial of service vulnerability. A flaw is present in WebKit, which fails to prevent man-in-the-middle attack while browsing the iTunes Store via iTunes. Successful exploitation could allow remote attack ... oval:org.secpod.oval:def:341 The host is installed with Apple iTunes before 10.2 or Apple Safari before 5.0.4 and is prone to denial of service vulnerability. A flaw is present in WebKit, which fails to prevent man-in-the-middle attack while browsing the iTunes Store via iTunes. Successful exploitation could allow remote attack ... oval:org.secpod.oval:def:340 The host is installed Apple iTunes before 10.2 or Apple Safari before 5.0.4 and is prone to denial of service vulnerability. A flaw is present in WebKit, which fails to prevent man-in-the-middle attack while browsing the iTunes Store via iTunes. Successful exploitation could allow remote attackers t ... oval:org.secpod.oval:def:339 The host is installed with Apple iTunes before 10.2 or Apple Safari before 5.0.4 and is prone to denial of service vulnerability. A flaw is present in WebKit, which fails to prevent man-in-the-middle attack while browsing the iTunes Store via iTunes. Successful exploitation could allow remote attack ... oval:org.secpod.oval:def:336 The host is installed Apple iTunes before 10.2 or Apple Safari before 5.0.4 and is prone to denial of service vulnerability. A flaw is present in WebKit, which fails to prevent man-in-the-middle attack while browsing the iTunes Store via iTunes. Successful exploitation could allow remote attackers t ... oval:org.secpod.oval:def:335 The host is installed with Apple iTunes before 10.2 or Apple Safari before 5.0.4 and is prone to denial of service vulnerability. A flaw is present in WebKit, which fails to prevent man-in-the-middle attack while browsing the iTunes Store via iTunes. Successful exploitation could allow remote attack ... oval:org.secpod.oval:def:338 The host is installed with Apple iTunes before 10.2 or Apple Safari before 5.0.4 and is prone to denial of service vulnerability. A flaw is present in WebKit, which fails to prevent man-in-the-middle attack while browsing the iTunes Store via iTunes. Successful exploitation could allow remote attack ... oval:org.secpod.oval:def:337 The host is installed with Apple iTunes before 10.2 or Apple Safari before 5.0.4 and is prone to denial of service vulnerability. A flaw is present in WebKit, which fails to prevent man-in-the-middle attack while browsing the iTunes Store via iTunes. Successful exploitation could allow remote attack ... oval:org.secpod.oval:def:7178 The host is installed with Apple iTunes before 10.7 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:7179 The host is installed with Apple iTunes before 10.7 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:310 The host is installed with Apple iTunes before 10.2 or Apple Safari before 5.0.4 and is prone to denial of service vulnerability. A flaw is present in WebKit, which fails to prevent man-in-the-middle attack while browsing the iTunes Store via iTunes. Successful exploitation could allow remote attack ... oval:org.secpod.oval:def:312 The host is installed with Apple iTunes before 10.2 or Apple Safari before 5.0.4 and is prone to denial of service vulnerability. A flaw is present in WebKit, which fails to prevent man-in-the-middle attack while browsing the iTunes Store via iTunes. Successful exploitation could allow remote attack ... oval:org.secpod.oval:def:311 The host is installed with Apple iTunes before 10.2 or Apple Safari before 5.0.4 and is prone to denial of service vulnerability. A flaw is present in WebKit, which fails to prevent man-in-the-middle attack while browsing the iTunes Store via iTunes. Successful exploitation could allow remote attack ... oval:org.mitre.oval:def:6981 Use-after-free vulnerability in the Cascading Style Sheets (CSS) implementation in WebKit in Apple Safari before 5.0 or Apple iTunes on Windows, allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via vectors involving the :first-letter pseudo-element. oval:org.mitre.oval:def:6741 Integer overflow in ColorSync in Apple Safari before 4.0.5 on Windows, and iTunes before 9.1, allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via an image with a crafted color profile that triggers a heap-based buffer overflow. oval:org.secpod.oval:def:7174 The host is installed with Apple iTunes before 10.7 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:7175 The host is installed with Apple iTunes before 10.7 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:7176 The host is installed with Apple iTunes before 10.7 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:7177 The host is installed with Apple iTunes before 10.7 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:7170 The host is installed with Apple iTunes before 10.7 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:7171 The host is installed with Apple iTunes before 10.7 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.mitre.oval:def:6988 Buffer overflow in Apple iTunes before 9.2.1 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted itpc: URL. oval:org.secpod.oval:def:7172 The host is installed with Apple iTunes before 10.7 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:7173 The host is installed with Apple iTunes before 10.7 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:7189 The host is installed with Apple iTunes before 10.7 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:321 The host is installed Apple iTunes before 10.2 or Apple Safari before 5.0.4 and is prone to denial of service vulnerability. A flaw is present in WebKit, which fails to prevent man-in-the-middle attack while browsing the iTunes Store via iTunes. Successful exploitation could allow remote attackers t ... oval:org.secpod.oval:def:320 The host is installed with Apple iTunes before 10.2 or Apple Safari before 5.0.4 and is prone to denial of service vulnerability. A flaw is present in WebKit, which fails to prevent man-in-the-middle attack while browsing the iTunes Store via iTunes. Successful exploitation could allow remote attack ... oval:org.secpod.oval:def:323 The host is installed with Apple iTunes before 10.2 or Apple Safari before 5.0.4 and is prone to denial of service vulnerability. A flaw is present in WebKit, which fails to prevent man-in-the-middle attack while browsing the iTunes Store via iTunes. Successful exploitation could allow remote attack ... oval:org.secpod.oval:def:322 The host is installed Apple iTunes before 10.2 or Apple Safari before 5.0.4 and is prone to denial of service vulnerability. A flaw is present in WebKit, which fails to prevent man-in-the-middle attack while browsing the iTunes Store via iTunes. Successful exploitation could allow remote attackers t ... oval:org.secpod.oval:def:318 The host is installed with Apple iTunes and is prone to denial of service vulnerability. A flaw is present in WebKit, which fails to prevent man-in-the-middle attack while browsing the iTunes Store via iTunes. Successful exploitation could allow remote attackers to execute arbitrary code or cause a ... oval:org.secpod.oval:def:319 The host is installed with Apple iTunes before 10.2 or Apple Safari before 5.0.4 and is prone to denial of service vulnerability. A flaw is present in WebKit, which fails to prevent man-in-the-middle attack while browsing the iTunes Store via iTunes. Successful exploitation could allow remote attack ... oval:org.secpod.oval:def:7180 The host is installed with Apple iTunes before 10.7 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:314 The host is installed with Apple iTunes before 10.2 or Apple Safari before 5.0.4 and is prone to denial of service vulnerability. A flaw is present in the DOM implementation in WebKit, which fails to handle DOM manipulations associated with event listeners during processing of range objects. Success ... oval:org.secpod.oval:def:313 The host is installed with Apple iTunes before 10.2 or Apple Safari before 5.0.4 and is prone to denial of service vulnerability. A flaw is present in WebKit, which fails to prevent man-in-the-middle attack while browsing the iTunes Store via iTunes. Successful exploitation could allow remote attack ... oval:org.secpod.oval:def:316 The host is installed with Apple iTunes before 10.2 or Apple Safari before 5.0.4 and is prone to denial of service vulnerability. A flaw is present in WebKit, which fails to prevent man-in-the-middle attack while browsing the iTunes Store via iTunes. Successful exploitation could allow remote attack ... oval:org.secpod.oval:def:315 The host is installed with Apple iTunes before 10.2 or Apple Safari before 5.0.4 and is prone to denial of service vulnerability. A flaw is present in setOuterText method in htmlelement library in WebKit, which fails to handle DOM manipulations during iTunes Store browsing. Successful exploitation c ... oval:org.secpod.oval:def:7185 The host is installed with Apple iTunes before 10.7 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:7186 The host is installed with Apple iTunes before 10.7 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.mitre.oval:def:6739 The execCommand JavaScript function in WebKit in Apple Safari before 5.0 or iTunes before 9.2 on Windows, does not properly restrict remote execution of clipboard commands, which allows remote attackers to modify the clipboard via a crafted HTML document. oval:org.secpod.oval:def:7187 The host is installed with Apple iTunes before 10.7 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:7188 The host is installed with Apple iTunes before 10.7 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:7181 The host is installed with Apple iTunes before 10.7 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:7182 The host is installed with Apple iTunes before 10.7 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:7183 The host is installed with Apple iTunes before 10.7 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:7184 The host is installed with Apple iTunes before 10.7 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:7169 The host is installed with Apple iTunes before 10.7 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.mitre.oval:def:7217 Untrusted search path vulnerability in Apple iTunes before 9.1, when running on Windows 7, Vista, and XP, allows local users and possibly remote attackers to gain privileges via a Trojan horse DLL in the current working directory. oval:org.mitre.oval:def:7252 Use-after-free vulnerability in WebKit in Apple Safari before 5.0 or iTunes before 9.2 on Windows, allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via an HTML element that has custom vertical positioning. oval:org.secpod.oval:def:15913 The host is installed with Apple iTunes before 11.1.4 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to handle a crafted website. Successful exploitation could allow attackers to crash the service. oval:org.secpod.oval:def:15912 The host is installed with Apple iTunes before 11.1.4 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to handle a crafted website. Successful exploitation could allow attackers to crash the service. oval:org.mitre.oval:def:7005 Use-after-free vulnerability in WebKit in Apple Safari before 5.0 or iTunes before 9.2 on Windows, allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via vectors related to the Node.normalize method. oval:org.secpod.oval:def:15910 The host is installed with Apple iTunes before 11.1.4 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to handle a crafted website. Successful exploitation could allow attackers to crash the service. oval:org.secpod.oval:def:15908 The host is installed with Apple iTunes before 11.1.4 and is prone to a denial of service vulnerability. A flaw is present in the application, which fails to handle a crafted website. Successful exploitation could allow attackers to crash the service. oval:org.secpod.oval:def:15909 The host is installed with Apple iTunes before 11.1.4 and is prone to a denial of service vulnerability. A flaw is present in the application, which fails to handle a crafted website. Successful exploitation could allow attackers to crash the service. oval:org.mitre.oval:def:7221 Unspecified vulnerability in WebKit in Apple iTunes before 9.2 on Windows has unknown impact and attack vectors, a different vulnerability than CVE-2010-1387 and CVE-2010-1769. oval:org.secpod.oval:def:15902 The host is installed with Apple iTunes before 11.1.4 and is prone to a denial of service vulnerability. A flaw is present in the application, which fails to handle a crafted website. Successful exploitation could allow attackers to crash the service. oval:org.secpod.oval:def:15903 The host is installed with Apple iTunes before 11.1.4 and is prone to a denial of service vulnerability. A flaw is present in the application, which fails to handle a crafted website. Successful exploitation could allow attackers to crash the service. oval:org.secpod.oval:def:15900 The host is installed with Apple iTunes before 11.1.4 and is prone to a denial of service vulnerability. A flaw is present in the application, which fails to handle a crafted website. Successful exploitation could allow attackers to crash the service. oval:org.secpod.oval:def:15901 The host is installed with Apple iTunes before 11.1.4 and is prone to a denial of service vulnerability. A flaw is present in the application, which fails to handle a crafted website. Successful exploitation could allow attackers to crash the service. oval:org.secpod.oval:def:15906 The host is installed with Apple iTunes before 11.1.4 and is prone to a denial of service vulnerability. A flaw is present in the application, which fails to handle a crafted website. Successful exploitation could allow attackers to crash the service. oval:org.secpod.oval:def:15907 The host is installed with Apple iTunes before 11.1.4 and is prone to a denial of service vulnerability. A flaw is present in the application, which fails to handle a crafted website. Successful exploitation could allow attackers to crash the service. oval:org.secpod.oval:def:15904 The host is installed with Apple iTunes before 11.1.4 and is prone to a denial of service vulnerability. A flaw is present in the application, which fails to handle a crafted website. Successful exploitation could allow attackers to crash the service. oval:org.mitre.oval:def:7061 Use-after-free vulnerability in JavaScriptCore in WebKit in Apple iTunes before 9.2 on Windows, and Apple iOS before 4 on the iPhone and iPod touch, allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via vectors related to page transitions, a different ... oval:org.mitre.oval:def:7295 WebKit in Apple Safari before 5.0 or iTunes before 9.2 on Windows, allows remote attackers to bypass intended restrictions on outbound connections to "non-default TCP ports" via a crafted port number, related to an "integer truncation issue." NOTE: this may overlap CVE-2010-1099. oval:org.mitre.oval:def:7049 Buffer underflow in the LZWDecodeCompat function in libtiff 3.8.2 allows context-dependent attackers to cause a denial of service (crash) via a crafted TIFF image, a different vulnerability than CVE-2008-2327. oval:org.mitre.oval:def:7288 Use-after-free vulnerability in WebKit in Apple Safari before 5.0 or iTunes before 9.2 on Windows, allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via vectors related to the contentEditable attribute and removing container elements. oval:org.mitre.oval:def:7041 Use-after-free vulnerability in WebKit in Apple Safari before 5.0 or iTunes before 9.2 on Windows, allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via vectors related to the removeChild DOM method. oval:org.mitre.oval:def:7037 Use-after-free vulnerability in WebKit in Apple Safari before 5.0 on Mac OS X 10.5 through 10.6 and Windows, Safari before 4.1 on Mac OS X 10.4, and Safari on Apple iPhone OS allows remote attackers to execute arbitrary code or cause a denial of service (application crash), or read the SMS database ... oval:org.mitre.oval:def:7031 Use-after-free vulnerability in WebKit in Apple Safari before 5.0 or Apple iTunes before 9.2 on Windows, allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via vectors involving caption elements. oval:org.mitre.oval:def:7024 Use-after-free vulnerability in WebKit in Apple Safari before 5.0 and Apple iTunes before 9.2 on Mac OS X 10.5 through 10.6 and Windows, and before 4.1 on Mac OS X 10.4, allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via vectors related to HTML but ... oval:org.secpod.oval:def:40565 The host is installed with Apple iTunes before 12.6.1 and is prone to an arbitrary code execution vulnerability. A flaw is present in the application, which fails to properly process maliciously crafted web content. Successful exploitation could allow attackers to execute arbitrary code. oval:org.secpod.oval:def:40566 The host is installed with Apple iTunes before 12.6.1 and is prone to a multiple memory corruption vulnerabilities. The flaws are present in the application, which fails to properly handle crafted data. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.mitre.oval:def:7099 WebKit in Apple Safari before 5.0 on Mac OS X 10.5 through 10.6 and Windows, Apple Safari before 4.1 on Mac OS X 10.4, and Google Chrome before 5.0.375.70 does not properly handle a transformation of a text node that has the IBM1147 character set, which allows remote attackers to execute arbitrary c ... oval:org.secpod.oval:def:41426 The host is installed with Apple iTunes before 12.6.2 and is prone to an arbitrary code execution vulnerability. A flaw is present in the application, which fails to properly handle an access issue. Successful exploitation could allow attackers to execute arbitrary code. oval:org.secpod.oval:def:195 The host is installed with Google Chrome before 9.0.597.94 and is prone to denial of service vulnerability. A flaw is present in the application, which fails to properly process anonymous blocks related to stale pointers. Successful exploitation allows remote attackers to cause a denial of service c ... oval:org.secpod.oval:def:197 The host is installed with Google Chrome before 9.0.597.94, Apple Safari before 5.0.6 or Apple iTunes before 10.5 and is prone to unspecified vulnerability. A flaw is present in the application, which fails to properly process animation events related to stale pointers. Successful exploitation allow ... oval:org.mitre.oval:def:7071 Double free vulnerability in WebKit in Apple Safari before 5.0 or Apple iTunes before 9.2 on Windows, allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via vectors related to an event listener in an SVG document, related to duplicate event listeners, ... oval:org.secpod.oval:def:7237 The host is installed with Apple iTunes before 10.7 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:7238 The host is installed with Apple iTunes before 10.7 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:7239 The host is installed with Apple iTunes before 10.7 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:7233 The host is installed with Apple iTunes before 10.7 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:7234 The host is installed with Apple iTunes before 10.7 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:7235 The host is installed with Apple iTunes before 10.7 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:7236 The host is installed with Apple iTunes before 10.7 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:7230 The host is installed with Apple iTunes before 10.7 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:7231 The host is installed with Apple iTunes before 10.7 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:7232 The host is installed with Apple iTunes before 10.7 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:7248 The host is installed with Apple iTunes before 10.7 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:7249 The host is installed with Apple iTunes before 10.7 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:7244 The host is installed with Apple iTunes before 10.7 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:7245 The host is installed with Apple iTunes before 10.7 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:7246 The host is installed with Apple iTunes before 10.7 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:7247 The host is installed with Apple iTunes before 10.7 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:7240 The host is installed with Apple iTunes before 10.7 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:7241 The host is installed with Apple iTunes before 10.7 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:7242 The host is installed with Apple iTunes before 10.7 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:7243 The host is installed with Apple iTunes before 10.7 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:7215 The host is installed with Apple iTunes before 10.7 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:7216 The host is installed with Apple iTunes before 10.7 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:7217 The host is installed with Apple iTunes before 10.7 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:7218 The host is installed with Apple iTunes before 10.7 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:7211 The host is installed with Apple iTunes before 10.7 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:7212 The host is installed with Apple iTunes before 10.7 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:7213 The host is installed with Apple iTunes before 10.7 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:7214 The host is installed with Apple iTunes before 10.7 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:7219 The host is installed with Apple iTunes before 10.7 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:7210 The host is installed with Apple iTunes before 10.7 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:7226 The host is installed with Apple iTunes before 10.7 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:16643 The host is installed with Apple iTunes before 11.1.4 and is prone to arbitrary code execution vulnerability. A flaw is present in the application, which fails to properly handle the contents of the iTunes Tutorials window. Successful exploitation allows attackers to gain control and inject arbitrar ... oval:org.secpod.oval:def:7227 The host is installed with Apple iTunes before 10.7 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:7228 The host is installed with Apple iTunes before 10.7 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:7229 The host is installed with Apple iTunes before 10.7 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:41404 The host is installed with Apple iTunes before 12.6.2 or Apple iCloud before 6.2.2 and is prone to an information disclosure vulnerability. A flaw is present in the applications, which fail to properly handle crafted XML document. Successful exploitation could allow attackers to disclose sensitive i ... oval:org.secpod.oval:def:7222 The host is installed with Apple iTunes before 10.7 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:7223 The host is installed with Apple iTunes before 10.7 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:7224 The host is installed with Apple iTunes before 10.7 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:7225 The host is installed with Apple iTunes before 10.7 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:41406 The host is installed with Apple iTunes before 12.6.2 or Apple iCloud before 6.2.2 and is prone to an information disclosure vulnerability. A flaw is present in the applications, which fail to properly handle crafted XML document. Successful exploitation could allow attackers to disclose user inform ... oval:org.secpod.oval:def:61005 The host is installed with Apple iTunes before 12.10.4 or iCloud before 7.17 and is prone to a privilege escalation vulnerability. A flaw is present in the applications, which fail to properly handle a memory corruption issue. Successful exploitation could allow attackers to execute arbitrary code. oval:org.secpod.oval:def:7220 The host is installed with Apple iTunes before 10.7 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:61004 The host is installed with Apple iTunes before 12.10.4 or iCloud before 7.17 and is prone to a memory corruption vulnerability. A flaw is present in the applications, which fail to properly handle a memory corruption issue. Successful exploitation could allow attackers to execute arbitrary code. oval:org.secpod.oval:def:7221 The host is installed with Apple iTunes before 10.7 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:61003 The host is installed with Apple iTunes before 12.10.4 or iCloud before 7.17 and is prone to a denial of service vulnerability. A flaw is present in the applications, which fail to properly handle a memory issue. Successful exploitation could allow attackers to cause a denial of service. oval:org.secpod.oval:def:61002 The host is installed with Apple iTunes before 12.10.4 or iCloud before 7.17 and is prone to a buffer overflow vulnerability. A flaw is present in the applications, which fail to properly handle a size validation issue. Successful exploitation could allow attackers to cause an unexpected application ... oval:org.secpod.oval:def:61001 The host is installed with Apple iTunes before 12.10.4 or iCloud before 7.17 and is prone to an out-of-bounds read vulnerability. A flaw is present in the applications, which fail to properly handle an input validation issue. Successful exploitation could allow attackers to execute arbitrary code. oval:org.secpod.oval:def:61000 The host is installed with Apple iTunes before 12.10.4 or iCloud before 7.17 and is prone to a privilege escalation vulnerability. A flaw is present in the applications, which fail to properly handle a memory corruption issue. Successful exploitation could allow attackers to execute arbitrary code. oval:org.secpod.oval:def:7204 The host is installed with Apple iTunes before 10.7 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:7205 The host is installed with Apple iTunes before 10.7 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:7206 The host is installed with Apple iTunes before 10.7 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:7207 The host is installed with Apple iTunes before 10.7 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:7200 The host is installed with Apple iTunes before 10.7 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:7201 The host is installed with Apple iTunes before 10.7 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:7202 The host is installed with Apple iTunes before 10.7 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:7203 The host is installed with Apple iTunes before 10.7 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:14280 The host is installed with Apple iTunes before 10.5 and is prone to denial of service vulnerability. A flaw is present in the application, which fail to handle string tokenization. Successful exploitation could allow remote attackers to execute remote code or cause unexpected application termination ... oval:org.secpod.oval:def:7208 The host is installed with Apple iTunes before 10.7 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:7209 The host is installed with Apple iTunes before 10.7 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.mitre.oval:def:6836 Incomplete blacklist vulnerability in WebKit in Apple Safari before 5.0 or iTunes before 9.2 on Windows, allows remote attackers to trigger disclosure of data over IRC via vectors involving an IRC service port. oval:org.secpod.oval:def:354 The host is installed with Apple iTunes before 10.2 or Apple Safari before 5.0.4 and is prone to denial of service vulnerability. A flaw is present in WebKit, which fails to implement the .sort function for JavaScript arrays. Successful exploitation could allow remote attackers to execute arbitrary ... oval:org.secpod.oval:def:353 The host is installed with Apple iTunes before 10.2 or Apple Safari before 5.0.4 and is prone to denial of service vulnerability. A flaw is present in WebKit, which fails to prevent man-in-the-middle attack while browsing the iTunes Store via iTunes. Successful exploitation could allow remote attack ... oval:org.secpod.oval:def:356 The host is installed with Apple iTunes before 10.2 or Apple Safari before 5.0.4 and is prone to denial of service vulnerability. A flaw is present in WebKit, which fails to prevent man-in-the-middle attack while browsing the iTunes Store via iTunes. Successful exploitation could allow remote attack ... oval:org.secpod.oval:def:355 The host is installed with Apple iTunes before 10.2 or Apple Safari before 5.0.4 and is prone to denial of service vulnerability. A flaw is present in WebKit, which fails to prevent man-in-the-middle attack while browsing the iTunes Store via iTunes. Successful exploitation could allow remote attack ... oval:org.secpod.oval:def:350 The host is installed with Apple iTunes before 10.2 or Apple Safari before 5.0.4 and is prone to denial of service vulnerability. A flaw is present in WebKit, which fails to prevent man-in-the-middle attack while browsing the iTunes Store via iTunes. Successful exploitation could allow remote attack ... oval:org.secpod.oval:def:352 The host is installed with Apple iTunes before 10.2 or Apple Safari before 5.0.4 and is prone to denial of service vulnerability. A flaw is present in WebKit, which fails to prevent man-in-the-middle attack while browsing the iTunes Store via iTunes. Successful exploitation could allow remote attack ... oval:org.secpod.oval:def:351 The host is installed with Apple iTunes before 10.2 or Apple Safari before 5.0.4 and is prone to denial of service vulnerability. A flaw is present in WebKit, which fails to prevent man-in-the-middle attack while browsing the iTunes Store via iTunes. Successful exploitation could allow remote attack ... oval:org.secpod.oval:def:347 The host is installed with Apple iTunes before 10.2 or Apple Safari before 5.0.4 and is prone to denial of service vulnerability. A flaw is present in WebKit, which fails to prevent man-in-the-middle attack while browsing the iTunes Store via iTunes. Successful exploitation could allow remote attack ... oval:org.secpod.oval:def:346 The host is installed with Apple iTunes before 10.2 or Apple Safari before 5.0.4 and is prone to denial of service vulnerability. A flaw is present in WebKit, which fails to prevent man-in-the-middle attack while browsing the iTunes Store via iTunes. Successful exploitation could allow remote attack ... oval:org.secpod.oval:def:349 The host is installed with Apple iTunes before 10.2 or Apple Safari before 5.0.4 and is prone to denial of service vulnerability. A flaw is present in WebKit, which fails to parse HTML elements associated with document namespaces. Successful exploitation could allow remote attackers to execute arbit ... oval:org.secpod.oval:def:348 The host is installed with Apple iTunes before 10.2 or Apple Safari before 5.0.4 and is prone to denial of service vulnerability. A flaw is present in WebKit, which fails to prevent man-in-the-middle attack while browsing the iTunes Store via iTunes. Successful exploitation could allow remote attack ... oval:org.secpod.oval:def:15598 The host is missing a security update according to Apple advisory, APPLE-SA-2013-09-18-1. The update is required to fix a remote code execution vulnerability. A flaw is present in the application, which fails to handle certain vectors in ActiveX control. Successful exploitation allows attackers to c ... oval:org.secpod.oval:def:15599 The host is installed with Apple iTunes before 11.1.0.126 and is prone to remote code execution vulnerability. A flaw is present in the application, which fails to handle certain vectors in ActiveX control. Successful exploitation allows attackers to cause an unexpected application termination or ar ... oval:org.secpod.oval:def:361 The host is installed with Apple iTunes before 10.2 or Apple Safari before 5.0.4 and is prone to buffer overflow vulnerability. A flaw is present in LibTIFF in ImageIO, which fails to handle TIFF images with JPEG encoding. Successful exploitation could allow remote attackers to execute arbitrary cod ... oval:org.secpod.oval:def:360 The host is installed with Apple iTunes before 10.2 or Apple Safari before 5.0.4 and is prone to heap based buffer overflow vulnerability. A flaw is present in ImageIO in CoreGraphics, which fails to handle crafted International Color Consortium (ICC) profile in a JPEG image. Successful exploitation ... oval:org.secpod.oval:def:362 The host is installed with Apple iTunes before 10.2 or Apple Safari before 5.0.4 and is prone to buffer overflow vulnerability. A flaw is present in LibTIFF in ImageIO, which fails to handle TIFF images with CCITT Group 4 encoding. Successful exploitation could allow remote attackers to execute arb ... oval:org.secpod.oval:def:358 The host is installed with Apple iTunes before 10.2 or Apple Safari before 5.0.4 and is prone to denial of service vulnerability. A flaw is present in WebKit, which fails to prevent man-in-the-middle attack while browsing the iTunes Store via iTunes. Successful exploitation could allow remote attack ... oval:org.secpod.oval:def:357 The host is installed with Apple iTunes before 10.5 or Apple Safari before 5.0.5 and is prone to denial of service vulnerability. A flaw is present in WebKit, which fails to prevent man-in-the-middle attack while browsing the iTunes Store via iTunes. Successful exploitation could allow remote attack ... oval:org.secpod.oval:def:359 The host is installed with Apple iTunes before 10.2 or Apple Safari before 5.0.4 and is prone to denial of service vulnerability. A flaw is present in WebKit, which fails to prevent man-in-the-middle attack while browsing the iTunes Store via iTunes. Successful exploitation could allow remote attack ... oval:org.mitre.oval:def:6885 ImageIO in Apple Safari before 4.0.5 and iTunes before 9.1 on Windows does not ensure that memory access is associated with initialized memory, which allows remote attackers to obtain potentially sensitive information from process memory via a crafted BMP image. oval:org.mitre.oval:def:6888 Cross-site scripting (XSS) vulnerability in WebKit in Apple Safari before 5.0 or Apple iTunes 9.2 on Mac OS X 10.5 through 10.6 and Windows, and before 4.1 on Mac OS X 10.4, allows remote attackers to inject arbitrary web script or HTML via vectors related to improper UTF-7 canonicalization, and lac ... oval:org.mitre.oval:def:6871 Cross-site scripting (XSS) vulnerability in WebKit in Apple Safari before 5.0 or iTunes before 9.2 on Windows allows remote attackers to inject arbitrary web script or HTML via a FRAME element with a SRC attribute composed of a javascript: sequence preceded by spaces. oval:org.mitre.oval:def:6876 The Cascading Style Sheets (CSS) implementation in WebKit in Apple Safari before 5.0 or iTunes before 9.2 on Windows, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via HTML content that contains multiple :after pseudo-selecto ... oval:org.secpod.oval:def:430 The host is installed with Google Chrome before 9.0.597.107, Apple Safari before 5.0.6 or Apple iTunes before 10.5 and is prone to denial of service vulnerability. A flaw is present in the application, which is caused by a stale node error related to table handling. Successful exploitation allow rem ... oval:org.secpod.oval:def:427 The host is installed with Google Chrome before 9.0.597.107, Apple Safari before 5.0.6 or Apple iTunes before 10.5 and is prone to denial of service vulnerability. A flaw is present in the application which is caused by a stale pointer error related to table rendering. Successful exploitation allow ... oval:org.mitre.oval:def:6862 Use-after-free vulnerability in WebKit in Apple Safari before 5.0 or Apple iTunes before 9.2 on Windows, allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via vectors involving fonts. oval:org.secpod.oval:def:439 The host is installed with Google Chrome before 9.0.597.107, Apple Safari before 5.0.6 or Apple iTunes before 10.5 and is prone to denial of service vulnerability. A flaw is present in the application which is caused by a stale pointer error related to the handling of stylesheet nodes. Successful ex ... oval:org.secpod.oval:def:49657 The host is installed with Apple iTunes before 12.9.2 or Apple iCloud before 7.9 and is prone to a user interface spoofing vulnerability. A flaw is present in the application, which fail to properly handle a logic issue. Successful exploitation could allow attackers to perform user interface spoofin ... oval:org.secpod.oval:def:49658 The host is installed with Apple iTunes before 12.9.2 or Apple iCloud before 7.9 and is prone to an arbitrary code execution vulnerability. The flaws are present in the application, which fail to properly handle multiple memory corruption issues. Successful exploitation could allow attackers to perf ... oval:org.secpod.oval:def:49656 The host is installed with Apple iTunes before 12.9.2 or Apple iCloud before 7.9 and is prone to an address bar spoofing vulnerability. A flaw is present in the application, which fail to properly handle a logic issue. Successful exploitation could allow attackers to perform address bar spoofing. oval:org.secpod.oval:def:7277 The host is installed with Apple iTunes before 10.7 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:7278 The host is installed with Apple iTunes before 10.7 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:7279 The host is installed with Apple iTunes before 10.7 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:7273 The host is installed with Apple iTunes before 10.7 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:7274 The host is installed with Apple iTunes before 10.7 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:7275 The host is installed with Apple iTunes before 10.7 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:7276 The host is installed with Apple iTunes before 10.7 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:7270 The host is installed with Apple iTunes before 10.7 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:7271 The host is installed with Apple iTunes before 10.7 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:7272 The host is installed with Apple iTunes before 10.7 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:15894 The host is installed with Apple iTunes before 11.1.4 and is prone to a denial of service vulnerability. A flaw is present in the application, which fails to handle a crafted website. Successful exploitation could allow attackers to crash the service. oval:org.secpod.oval:def:15895 The host is installed with Apple iTunes before 11.1.4 and is prone to a denial of service vulnerability. A flaw is present in the application, which fails to handle a crafted website. Successful exploitation could allow attackers to crash the service. oval:org.secpod.oval:def:15893 The host is installed with Apple iTunes before 11.1.2 and is prone to a denial of service vulnerability. A flaw is present in the application, which fails to properly handle text tracks. Successful exploitation could allow attackers to crash the service. oval:org.secpod.oval:def:15898 The host is installed with Apple iTunes before 11.1.4 and is prone to a denial of service vulnerability. A flaw is present in the application, which fails to handle a crafted website. Successful exploitation could allow attackers to crash the service. oval:org.secpod.oval:def:15899 The host is installed with Apple iTunes before 11.1.4 and is prone to a denial of service vulnerability. A flaw is present in the application, which fails to handle a crafted website. Successful exploitation could allow attackers to crash the service. oval:org.secpod.oval:def:15896 The host is installed with Apple iTunes before 11.1.4 and is prone to a denial of service vulnerability. A flaw is present in the application, which fails to handle a crafted website. Successful exploitation could allow attackers to crash the service. oval:org.secpod.oval:def:15897 The host is installed with Apple iTunes before 11.1.4 and is prone to a denial of service vulnerability. A flaw is present in the application, which fails to handle a crafted website. Successful exploitation could allow attackers to crash the service. oval:org.secpod.oval:def:421 The host is installed with Google Chrome before 9.0.597.107, Apple Safari before 5.0.6 or Apple iTunes before 10.5 and is prone to denial of service vulnerability. A flaw is present in the application which is caused by an error related to the handling of XHTML. Successful exploitation allows attack ... oval:org.secpod.oval:def:412 The host is installed with Google Chrome before 9.0.597.107 or Apple iTunes before 10.5 and is prone to integer overflow vulnerability. A flaw is present in the application which can cause an integer overflow related to textarea handling. Successful exploitation allows attacker to execute arbitrary ... oval:org.secpod.oval:def:7284 The host is missing a security update according to Apple advisory, APPLE-SA-2012-09-12-1. The update is required to fix multiple vulnerabilities. The flaws are present in the application, which fails to properly handle a crafted website. Successful exploitation could allow attackers to execute arbit ... oval:org.secpod.oval:def:7280 The host is installed with Apple iTunes before 10.7 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:7281 The host is installed with Apple iTunes before 10.7 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:7282 The host is installed with Apple iTunes before 10.7 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:7283 The host is installed with Apple iTunes before 10.7 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:7259 The host is installed with Apple iTunes before 10.7 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:7255 The host is installed with Apple iTunes before 10.7 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:7256 The host is installed with Apple iTunes before 10.7 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:7257 The host is installed with Apple iTunes before 10.7 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:7258 The host is installed with Apple iTunes before 10.7 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:864 The host is installed with Google Chrome before 11.0.696.57, Apple Safari before 5.0.6 or Apple iTunes before 10.5 and is prone to use-after-free vulnerability. A flaw is present in the browser, which fails to handle WebSockets implementation. Successful exploitation could allow remote attackers to ... oval:org.secpod.oval:def:866 The host is installed with Google Chrome before 11.0.696.57, Apple Safari version less than or equal to 5.0.5 or Apple iTunes before 10.5 and is prone to denial of service vulnerability. A flaw is present in the browser, which fails to handle DOM id maps resulting in dangling pointers. Successful ex ... oval:org.secpod.oval:def:623 The host is installed with Google Chrome before 10.0.648.204 or Apple iTunes before 10.5 and is prone to use-after-free vulnerability. A flaw is present in the HTMLCollection implementation in the application which does not properly implement HTMLCollection. Successful exploitation allow remote atta ... oval:org.secpod.oval:def:7251 The host is installed with Apple iTunes before 10.7 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:7252 The host is installed with Apple iTunes before 10.7 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:7253 The host is installed with Apple iTunes before 10.7 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:7254 The host is installed with Apple iTunes before 10.7 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.mitre.oval:def:5336 Apple iTunes before 8.1 does not properly inform the user about the origin of an authentication request, which makes it easier for remote podcast servers to trick a user into providing a username and password when subscribing to a crafted podcast. oval:org.secpod.oval:def:629 The host is installed with Google Chrome before 10.0.648.204, Apple Safari before 5.0.6 or Apple iTunes before 10.5 and is prone to denial of service vulnerability. A flaw is present in the application which does not properly handle SVG text. Successful exploitation allow remote attackers to cause a ... oval:org.secpod.oval:def:7250 The host is installed with Apple iTunes before 10.7 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:7266 The host is installed with Apple iTunes before 10.7 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:7267 The host is installed with Apple iTunes before 10.7 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:7268 The host is installed with Apple iTunes before 10.7 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:7269 The host is installed with Apple iTunes before 10.7 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:7262 The host is installed with Apple iTunes before 10.7 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:7263 The host is installed with Apple iTunes before 10.7 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:7264 The host is installed with Apple iTunes before 10.7 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:7265 The host is installed with Apple iTunes before 10.7 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.mitre.oval:def:6656 Cross-site scripting (XSS) vulnerability in WebKit in Apple Safari before 5.0 on Mac OS X 10.5 through 10.6 and Windows, and before 4.1 on Mac OS X 10.4, allows remote attackers to inject arbitrary web script or HTML via vectors related to a malformed URL. oval:org.secpod.oval:def:7260 The host is installed with Apple iTunes before 10.7 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:7261 The host is installed with Apple iTunes before 10.7 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.mitre.oval:def:7335 Use-after-free vulnerability in WebKit in Apple Safari before 5.0 on Mac OS X 10.5 through 10.6 and Windows, and before 4.1 on Mac OS X 10.4, allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via vectors involving DOM Range objects. oval:org.mitre.oval:def:6001 Apple iTunes before 8.1 on Windows allows remote attackers to cause a denial of service (infinite loop) via a Digital Audio Access Protocol (DAAP) message with a crafted Content-Length header. oval:org.secpod.oval:def:57655 The host is installed with Apple iTunes before 12.9.6 or Apple iCloud before 7.13 and is prone to a universal cross-site scripting vulnerability. A flaw is present in the applications, which fail to properly handle a logic issue. Successful exploitation could allow attackers to execute arbitrary cod ... oval:org.secpod.oval:def:856 The host is installed with Google Chrome before 11.0.696.57, Apple Safari before 5.1.1 or Apple iTunes before 10.5 and is prone to denial of service vulnerability. A flaw is present in the application, which fail to handle ruby element and Cascading Style Sheets (CSS) token sequences. Successful exp ... oval:org.secpod.oval:def:57662 The host is installed with Apple iTunes before 12.9.6 or Apple iCloud before 7.13 and is prone to an arbitrary code execution vulnerability. A flaw is present in the applications, which fail to properly handle multiple memory corruption issues. Successful exploitation could allow attackers to execut ... oval:org.secpod.oval:def:57661 The host is installed with Apple iTunes before 12.9.6 or Apple iCloud before 7.13 and is prone to an arbitrary code execution vulnerability. A flaw is present in the applications, which fail to properly handle multiple memory corruption issues. Successful exploitation could allow attackers to execut ... oval:org.secpod.oval:def:57660 The host is installed with Apple iTunes before 12.9.6 or Apple iCloud before 7.13 and is prone to an arbitrary code execution vulnerability. A flaw is present in the applications, which fail to properly handle multiple memory corruption issues. Successful exploitation could allow attackers to execut ... oval:org.secpod.oval:def:57666 The host is installed with Apple iTunes before 12.9.6 or Apple iCloud before 7.13 and is prone to an arbitrary code execution vulnerability. A flaw is present in the applications, which fail to properly handle multiple memory corruption issues. Successful exploitation could allow attackers to execut ... oval:org.secpod.oval:def:57665 The host is installed with Apple iTunes before 12.9.6 or Apple iCloud before 7.13 and is prone to an arbitrary code execution vulnerability. A flaw is present in the applications, which fail to properly handle multiple memory corruption issues. Successful exploitation could allow attackers to execut ... oval:org.secpod.oval:def:57664 The host is installed with Apple iTunes before 12.9.6 or Apple iCloud before 7.13 and is prone to an arbitrary code execution vulnerability. A flaw is present in the applications, which fail to properly handle multiple memory corruption issues. Successful exploitation could allow attackers to execut ... oval:org.secpod.oval:def:57663 The host is installed with Apple iTunes before 12.9.6 or Apple iCloud before 7.13 and is prone to an arbitrary code execution vulnerability. A flaw is present in the applications, which fail to properly handle multiple memory corruption issues. Successful exploitation could allow attackers to execut ... oval:org.secpod.oval:def:57659 The host is installed with Apple iTunes before 12.9.6 or Apple iCloud before 7.13 and is prone to an arbitrary code execution vulnerability. A flaw is present in the applications, which fail to properly handle multiple memory corruption issues. Successful exploitation could allow attackers to execut ... oval:org.secpod.oval:def:57658 The host is installed with Apple iTunes before 12.9.6 or Apple iCloud before 7.13 and is prone to an arbitrary code execution vulnerability. A flaw is present in the applications, which fail to properly handle multiple memory corruption issues. Successful exploitation could allow attackers to execut ... oval:org.mitre.oval:def:7314 Use-after-free vulnerability in WebKit in Apple Safari before 5.0 or Apple iTunes before 9.2 on Windows, allows user-assisted remote attackers to execute arbitrary code or cause a denial of service (application crash) via vectors involving a certain window close action that occurs during a drag-and- ... oval:org.secpod.oval:def:57657 The host is installed with Apple iTunes before 12.9.6 or Apple iCloud before 7.13 and is prone to an arbitrary code execution vulnerability. A flaw is present in the applications, which fail to properly handle multiple memory corruption issues. Successful exploitation could allow attackers to execut ... oval:org.secpod.oval:def:57656 The host is installed with Apple iTunes before 12.9.6 or Apple iCloud before 7.13 and is prone to a universal cross site scripting vulnerability. A flaw is present in the applications, which fail to properly handle a logic issue issue. Successful exploitation could allow attackers to execute cross-s ... oval:org.secpod.oval:def:57673 The host is installed with Apple iTunes before 12.9.6 or Apple iCloud before 7.13 and is prone to an arbitrary code execution vulnerability. A flaw is present in the applications, which fail to properly handle multiple memory corruption issues. Successful exploitation could allow attackers to execut ... oval:org.secpod.oval:def:57672 The host is installed with Apple iTunes before 12.9.6 or Apple iCloud before 7.13 and is prone to an arbitrary code execution vulnerability. A flaw is present in the applications, which fail to properly handle multiple memory corruption issues. Successful exploitation could allow attackers to execut ... oval:org.secpod.oval:def:57671 The host is installed with Apple iTunes before 12.9.6 or Apple iCloud before 7.13 and is prone to an arbitrary code execution vulnerability. A flaw is present in the applications, which fail to properly handle multiple memory corruption issues. Successful exploitation could allow attackers to execut ... oval:org.secpod.oval:def:57670 The host is installed with Apple iTunes before 12.9.6 or Apple iCloud before 7.13 and is prone to an arbitrary code execution vulnerability. A flaw is present in the applications, which fail to properly handle multiple memory corruption issues. Successful exploitation could allow attackers to execut ... oval:org.secpod.oval:def:57676 The host is installed with Apple iTunes before 12.9.6 or Apple iCloud before 7.13 and is prone to a universal cross site scripting vulnerability. A flaw is present in the applications, which fail to properly handle a logic issue issue. Successful exploitation could allow attackers to execute arbitra ... oval:org.secpod.oval:def:57675 The host is installed with Apple iTunes before 12.9.6 or Apple iCloud before 7.13 and is prone to an arbitrary code execution vulnerability. A flaw is present in the applications, which fail to properly handle multiple memory corruption issues. Successful exploitation could allow attackers to execut ... oval:org.secpod.oval:def:57674 The host is installed with Apple iTunes before 12.9.6 or Apple iCloud before 7.13 and is prone to an arbitrary code execution vulnerability. A flaw is present in the applications, which fail to properly handle multiple memory corruption issues. Successful exploitation could allow attackers to execut ... oval:org.secpod.oval:def:57669 The host is installed with Apple iTunes before 12.9.6 or Apple iCloud before 7.13 and is prone to an arbitrary code execution vulnerability. A flaw is present in the applications, which fail to properly handle multiple memory corruption issues. Successful exploitation could allow attackers to execut ... oval:org.secpod.oval:def:57668 The host is installed with Apple iTunes before 12.9.6 or Apple iCloud before 7.13 and is prone to an arbitrary code execution vulnerability. A flaw is present in the applications, which fail to properly handle multiple memory corruption issues. Successful exploitation could allow attackers to execut ... oval:org.secpod.oval:def:57667 The host is installed with Apple iTunes before 12.9.6 or Apple iCloud before 7.13 and is prone to an arbitrary code execution vulnerability. A flaw is present in the applications, which fail to properly handle multiple memory corruption issues. Successful exploitation could allow attackers to execut ... oval:org.mitre.oval:def:6290 Buffer overflow in Apple iTunes before 9.0.1 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted .pls file. oval:org.mitre.oval:def:7374 WebKit in Apple Safari before 5.0 or Apple iTunes before 9.2 does not properly handle libxml contexts, allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted HTML document, related to an "API abuse issue." oval:org.mitre.oval:def:6035 Integer overflow in the IopfCompleteRequest API in the kernel in Microsoft Windows 2000, XP, Server 2003, and Vista allows context-dependent attackers to gain privileges. NOTE: this issue was originally reported for GEARAspiWDM.sys 2.0.7.5 in Gear Software CD DVD Filter driver before 4.001.7, as use ... oval:org.mitre.oval:def:7110 Race condition in the installation package in Apple iTunes before 9.1 on Windows allows local users to gain privileges by replacing an unspecified file with a Trojan horse. oval:org.mitre.oval:def:7346 The Cascading Style Sheets (CSS) implementation in WebKit in Apple Safari before 5.0 or Apple iTunes before 9.2 on Windows, allows remote attackers to discover sensitive URLs via an HREF attribute associated with a redirecting URL. oval:org.secpod.oval:def:83327 The host is installed with Apple iTunes before 12.10.1 and is prone to a memory corruption vulnerability. A flaw is present in the applications, which fail to properly handle issues in state management. Successful exploitation allows attackers to cause arbitrary code execution while processing a mal ... oval:org.secpod.oval:def:83328 The host is installed with Apple iTunes before 12.10.2 and is prone to a information disclosure vulnerability. A flaw is present in the application, which fails to properly handle third party HTTP referrers. Successful exploitation may allow attackers to reveal the sites a user has visited. oval:org.secpod.oval:def:83323 The host is installed with Apple iTunes before 12.10.1 and is prone to a memory corruption vulnerability. A flaw is present in the applications, which fail to properly handle issues in memory handling. Successful exploitation allows attackers to cause arbitrary code execution while processing a mali ... oval:org.secpod.oval:def:83324 The host is installed with Apple iTunes before 12.10.1 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a memory related issue. Successful exploitation could allow attackers to cause memory corruption. oval:org.secpod.oval:def:83325 The host is installed with Apple iTunes before 12.10.1 and is prone to a cross site scripting vulnerability. A flaw is present in the applications, which fail to properly handle issues in logic. On successful exploitation, processing maliciously crafted web content may lead to universal cross site s ... oval:org.secpod.oval:def:83326 The host is installed with Apple iTunes before 12.10.1 and is prone to a memory corruption vulnerability. A flaw is present in the applications, which fail to properly handle issues in memory handling. Successful exploitation allows attackers to cause arbitrary code execution while processing a mali ... oval:org.secpod.oval:def:83320 The host is installed with Apple iTunes before 12.10.1 and is prone to a out-of-bounds read vulnerability. A flaw is present in the applications, which fail to properly handle issues in input validation. On successful exploitation, a remote attacker may be able to cause unexpected application termin ... oval:org.secpod.oval:def:83321 The host is installed with Apple iTunes before 12.10.1 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a memory related issue. Successful exploitation could allow attackers to cause memory corruption. oval:org.secpod.oval:def:83322 The host is installed with Apple iTunes before 12.10.1 and is prone to a memory corruption vulnerability. A flaw is present in the applications, which fail to properly handle issues in memory handling. Successful exploitation allows attackers to cause arbitrary code execution while processing a mali ... oval:org.secpod.oval:def:83317 The host is installed with Apple iTunes before 12.10.1 and is prone to a memory corruption vulnerability. A flaw is present in the applications, which fail to properly handle issues in memory handling. Successful exploitation allows attackers to cause arbitrary code execution while processing a mali ... oval:org.secpod.oval:def:83318 The host is installed with Apple iTunes before 12.10.1 and is prone to a memory corruption vulnerability. A flaw is present in the applications, which fail to properly handle issues in memory handling. Successful exploitation allows attackers to cause arbitrary code execution while processing a mali ... oval:org.secpod.oval:def:83319 The host is installed with Apple iTunes before 12.10.1 and is prone to a denial of service vulnerability. A flaw is present in the applications, which fail to properly handle issues in input validation. Successful exploitation, processing a large input may lead to a denial of service. oval:org.secpod.oval:def:83314 The host is installed with Apple iTunes before 12.9.5 and is prone to a out-of-bounds read vulnerability. A flaw is present in the application, which fails to properly handle issues in bounds checking. On successful exploitation, processing a maliciously crafted font may result in the disclosure of ... oval:org.secpod.oval:def:55069 The host is installed with Apple iTunes before 12.9.5 or Apple iCloud before 7.12 and is prone to an improper access control vulnerability. A flaw is present in the applications, which fail to properly handle an input validation issue. Successful exploitation could allow attackers to read restricted ... oval:org.secpod.oval:def:55067 The host is installed with Apple iTunes before 12.9.5 or Apple iCloud before 7.12 and is prone to a privilege escalation vulnerability. A flaw is present in the applications, which fail to properly handle a memory issue. Successful exploitation could allow attackers to gain elevated privileges throu ... oval:org.secpod.oval:def:55068 The host is installed with Apple iTunes before 12.9.5 or Apple iCloud before 7.12 and is prone to a memory corruption vulnerability. A flaw is present in the applications, which fail to properly handle an input validation issue. Successful exploitation could allow attackers to execute arbitrary code ... oval:org.secpod.oval:def:55072 The host is installed with Apple iTunes before 12.9.5 or Apple iCloud before 7.12 and is prone to a memory corruption vulnerability. A flaw is present in the applications, which fail to properly handle an input validation issue. Successful exploitation could allow attackers to execute arbitrary code ... oval:org.secpod.oval:def:55073 The host is installed with Apple iTunes before 12.9.5 or Apple iCloud before 7.12 and is prone to a memory corruption vulnerability. A flaw is present in the applications, which fail to properly handle an input validation issue. Successful exploitation could allow attackers to execute arbitrary code ... oval:org.secpod.oval:def:55070 The host is installed with Apple iTunes before 12.9.5 or Apple iCloud before 7.12 and is prone to a memory corruption vulnerability. A flaw is present in the applications, which fail to properly handle vulnerable code. Successful exploitation could allow attackers to gain elevated privileges through ... oval:org.secpod.oval:def:55071 The host is installed with Apple iTunes before 12.9.5 or Apple iCloud before 7.12 and is prone to an out-of-bounds read vulnerability. A flaw is present in the applications, which fail to properly handle an input validation issue. Successful exploitation could allow attackers to disclosure of proces ... oval:org.secpod.oval:def:55076 The host is installed with Apple iTunes before 12.9.5 or Apple iCloud before 7.12 and is prone to a memory corruption vulnerability. A flaw is present in the applications, which fail to properly handle an input validation issue. Successful exploitation could allow attackers to execute arbitrary code ... oval:org.secpod.oval:def:55077 The host is installed with Apple iTunes before 12.9.5 or Apple iCloud before 7.12 and is prone to a memory corruption vulnerability. A flaw is present in the applications, which fail to properly handle an input validation issue. Successful exploitation could allow attackers to execute arbitrary code ... oval:org.secpod.oval:def:55074 The host is installed with Apple iTunes before 12.9.5 or Apple iCloud before 7.12 and is prone to a memory corruption vulnerability. A flaw is present in the applications, which fail to properly handle an input validation issue. Successful exploitation could allow attackers to execute arbitrary code ... oval:org.secpod.oval:def:55075 The host is installed with Apple iTunes before 12.9.5 or Apple iCloud before 7.12 and is prone to a memory corruption vulnerability. A flaw is present in the applications, which fail to properly handle an input validation issue. Successful exploitation could allow attackers to execute arbitrary code ... oval:org.secpod.oval:def:55078 The host is installed with Apple iTunes before 12.9.5 or Apple iCloud before 7.12 and is prone to a memory corruption vulnerability. A flaw is present in the applications, which fail to properly handle an input validation issue. Successful exploitation could allow attackers to execute arbitrary code ... oval:org.secpod.oval:def:55079 The host is installed with Apple iTunes before 12.9.5 or Apple iCloud before 7.12 and is prone to a memory corruption vulnerability. A flaw is present in the applications, which fail to properly handle an input validation issue. Successful exploitation could allow attackers to execute arbitrary code ... oval:org.secpod.oval:def:55080 The host is installed with Apple iTunes before 12.9.5 or Apple iCloud before 7.12 and is prone to a memory corruption vulnerability. A flaw is present in the applications, which fail to properly handle an input validation issue. Successful exploitation could allow attackers to execute arbitrary code ... oval:org.secpod.oval:def:55083 The host is installed with Apple iTunes before 12.9.5 or Apple iCloud before 7.12 and is prone to a memory corruption vulnerability. A flaw is present in the applications, which fail to properly handle an input validation issue. Successful exploitation could allow attackers to execute arbitrary code ... oval:org.secpod.oval:def:55084 The host is installed with Apple iTunes before 12.9.5 or Apple iCloud before 7.12 and is prone to a memory corruption vulnerability. A flaw is present in the applications, which fail to properly handle an input validation issue. Successful exploitation could allow attackers to execute arbitrary code ... oval:org.secpod.oval:def:55081 The host is installed with Apple iTunes before 12.9.5 or Apple iCloud before 7.12 and is prone to a memory corruption vulnerability. A flaw is present in the applications, which fail to properly handle an input validation issue. Successful exploitation could allow attackers to execute arbitrary code ... oval:org.secpod.oval:def:55082 The host is installed with Apple iTunes before 12.9.5 or Apple iCloud before 7.12 and is prone to a memory corruption vulnerability. A flaw is present in the applications, which fail to properly handle an input validation issue. Successful exploitation could allow attackers to execute arbitrary code ... oval:org.secpod.oval:def:55087 The host is installed with Apple iTunes before 12.9.5 or Apple iCloud before 7.12 and is prone to a memory corruption vulnerability. A flaw is present in the applications, which fail to properly handle an input validation issue. Successful exploitation could allow attackers to execute arbitrary code ... oval:org.secpod.oval:def:55088 The host is installed with Apple iTunes before 12.9.5 or Apple iCloud before 7.12 and is prone to a memory corruption vulnerability. A flaw is present in the applications, which fail to properly handle an input validation issue. Successful exploitation could allow attackers to execute arbitrary code ... oval:org.secpod.oval:def:55085 The host is installed with Apple iTunes before 12.9.5 or Apple iCloud before 7.12 and is prone to a memory corruption vulnerability. A flaw is present in the applications, which fail to properly handle an input validation issue. Successful exploitation could allow attackers to execute arbitrary code ... oval:org.secpod.oval:def:55086 The host is installed with Apple iTunes before 12.9.5 or Apple iCloud before 7.12 and is prone to a memory corruption vulnerability. A flaw is present in the applications, which fail to properly handle an input validation issue. Successful exploitation could allow attackers to execute arbitrary code ... oval:org.secpod.oval:def:55089 The host is installed with Apple iTunes before 12.9.5 or Apple iCloud before 7.12 and is prone to a memory corruption vulnerability. A flaw is present in the applications, which fail to properly handle an input validation issue. Successful exploitation could allow attackers to execute arbitrary code ... oval:org.secpod.oval:def:55090 The host is installed with Apple iTunes before 12.9.5 or Apple iCloud before 7.12 and is prone to a memory corruption vulnerability. A flaw is present in the applications, which fail to properly handle an input validation issue. Successful exploitation could allow attackers to execute arbitrary code ... oval:org.secpod.oval:def:55091 The host is installed with Apple iTunes before 12.9.5 or Apple iCloud before 7.12 and is prone to a memory corruption vulnerability. A flaw is present in the applications, which fail to properly handle an input validation issue. Successful exploitation could allow attackers to execute arbitrary code ... oval:org.secpod.oval:def:55093 The host is missing a security update according to Apple advisory, APPLE-SA-2019-5-28-2. The update is required to fix multiple vulnerabilities. The flaws are present in the application which fails to handle crafted data. Successful exploitation could allow attackers to execute arbitrary code. oval:org.secpod.oval:def:74428 The host is installed with Apple iTunes before 12.11.4 and is prone to an arbitrary code execution vulnerability. A flaw is present in the application, which fails to properly handle checks issue. Successful exploitation allows attackers to cause arbitrary code execution while processing a malicious ... oval:org.secpod.oval:def:74429 The host is installed with Apple iTunes before 12.11.4 and is prone to a buffer overflow vulnerability. A flaw is present in the application, which fails to properly handle bounds check issue. Successful exploitation allows attackers to cause arbitrary code execution while processing a maliciously c ... oval:org.secpod.oval:def:74427 The host is missing a security update according to Apple advisory. The update is required to fix multiple vulnerabilities. The flaws are present in the application, which fails to handle multiple vectors. Successful exploitation could allows attackers to cause arbitrary code execution while processi ... oval:org.secpod.oval:def:67908 The host is installed with Apple iTunes before 12.10.8 or iCloud before 7.20 and is prone to an out-of-bounds read vulnerability. A flaw is present in the application, which fails to properly handle an input validation issue. Successful exploitation could allow an attacker to execute arbitrary code. oval:org.secpod.oval:def:67889 The host is missing a security update according to Apple advisory. The update is required to fix multiple vulnerabilities. The flaws are present in the application, which fails to handle a malicious web content. Successful exploitation could allow attackers to execute arbitrary code. oval:org.secpod.oval:def:67910 The host is installed with Apple iTunes before 12.10.8 or iCloud before 7.20 and is prone to a buffer overflow vulnerability. A flaw is present in the application, which fails to properly handle a memory issue. Successful exploitation could allow an attacker to execute arbitrary code. oval:org.secpod.oval:def:67905 The host is installed with Apple iTunes before 12.10.8 or iCloud before 7.20 and is prone to an out-of-bounds write vulnerability. A flaw is present in the application, which fails to properly handle a bounds checking issue. Successful exploitation could allow an attacker to execute arbitrary code. oval:org.secpod.oval:def:67907 The host is installed with Apple iTunes before 12.10.8 or iCloud before 7.20 and is prone to an out-of-bounds read vulnerability. A flaw is present in the application, which fails to properly handle an input validation issue. Successful exploitation could allow an attacker to execute arbitrary code. oval:org.secpod.oval:def:67891 The host is installed with Apple iTunes before 12.10.8 or iCloud before 7.20 and is prone to a buffer overflow vulnerability. A flaw is present in the application, which fails to properly handle a memory issue. Successful exploitation could allow an attacker to execute arbitrary code. oval:org.secpod.oval:def:67911 The host is installed with Apple iTunes before 12.10.8 or iCloud before 7.20 and is prone to an out-of-bounds write vulnerability. A flaw is present in the application, which fails to properly handle a bounds checking issue. Successful exploitation could allow an attacker to cause unexpected applica ... oval:org.secpod.oval:def:67912 The host is installed with Apple iTunes before 12.10.8 or iCloud before 7.20 and is prone to an integer overflow vulnerability. A flaw is present in the application, which fails to properly handle a input validation issue. Successful exploitation could allow an attacker to cause arbitrary code execu ... oval:org.secpod.oval:def:67902 The host is installed with Apple iTunes before 12.10.8 or iCloud before 7.20 and is prone to an out-of-bounds write vulnerability. A flaw is present in the application, which fails to properly handle a bounds checking issue. Successful exploitation could allow an attacker to execute arbitrary code. oval:org.secpod.oval:def:67903 The host is installed with Apple iTunes before 12.10.8 or iCloud before 7.20 and is prone to an out-of-bounds write vulnerability. A flaw is present in the application, which fails to properly handle a bounds checking issue. Successful exploitation could allow an attacker to execute arbitrary code. oval:org.secpod.oval:def:67906 The host is installed with Apple iTunes before 12.10.8 or iCloud before 7.20 and is prone to an out-of-bounds read vulnerability. A flaw is present in the application, which fails to properly handle an input validation issue. Successful exploitation could allow an attacker to execute arbitrary code. oval:org.secpod.oval:def:67909 The host is installed with Apple iTunes before 12.10.8 or iCloud before 7.20 and is prone to an out-of-bounds read vulnerability. A flaw is present in the application, which fails to properly handle a bounds checking issue. Successful exploitation could allow an attacker to execute arbitrary code. oval:org.secpod.oval:def:67900 The host is installed with Apple iTunes before 12.10.8 or iCloud before 7.20 and is prone to an out-of-bounds write vulnerability. A flaw is present in the application, which fails to properly handle a bounds checking issue. Successful exploitation could allow an attacker to execute arbitrary code. oval:org.secpod.oval:def:67901 The host is installed with Apple iTunes before 12.10.8 or iCloud before 7.20 and is prone to an out-of-bounds write vulnerability. A flaw is present in the application, which fails to properly handle a bounds checking issue. Successful exploitation could allow an attacker to execute arbitrary code. oval:org.secpod.oval:def:67904 The host is installed with Apple iTunes before 12.10.8 or iCloud before 7.20 and is prone to an out-of-bounds write vulnerability. A flaw is present in the application, which fails to properly handle a bounds checking issue. Successful exploitation could allow an attacker to execute arbitrary code. oval:org.secpod.oval:def:67915 The host is installed with Apple iTunes before 12.10.8 or iCloud before 7.20 and is prone to a cross-site scripting vulnerability. A flaw is present in the application, which fails to properly handle a logic issue. Successful exploitation could allow an attacker to cause cross-site scripting. oval:org.secpod.oval:def:67914 The host is installed with Apple iTunes before 12.10.8 or iCloud before 7.20 and is prone to a privilege escalation vulnerability. A flaw is present in the application, which fails to properly handle a Content Security Policy issue. Successful exploitation could allow an attacker to prevent Content ... oval:org.secpod.oval:def:67919 The host is installed with Apple iTunes before 12.10.8 or iCloud before 7.20 and is prone to a URL Unicode encoding vulnerability. A flaw is present in the application, which fails to properly handle a state management issue. Successful exploitation could allow an attacker to conceal the destination ... oval:org.secpod.oval:def:67918 The host is installed with Apple iTunes before 12.10.8 or iCloud before 7.20 and is prone to a privilege escalation vulnerability. A flaw is present in the application, which fails to properly handle a logic issue. Successful exploitation could allow an attacker with arbitrary read and write capabil ... oval:org.secpod.oval:def:67913 The host is installed with Apple iTunes before 12.10.8 or iCloud before 7.20 and is prone to an out-of-bounds read vulnerability. A flaw is present in the application, which fails to properly handle an input validation issue. Successful exploitation could allow an attacker to cause unexpected applic ... oval:org.secpod.oval:def:67917 The host is installed with Apple iTunes before 12.10.8 or iCloud before 7.20 and is prone to a use after free vulnerability. A flaw is present in the application, which fails to properly handle a memory issue. Successful exploitation could allow an attacker to cause unexpected application terminatio ... oval:org.secpod.oval:def:67916 The host is installed with Apple iTunes before 12.10.8 or iCloud before 7.20 and is prone to a use after free vulnerability. A flaw is present in the application, which fails to properly handle a memory issue. Successful exploitation could allow an attacker to cause unexpected application terminatio ... oval:org.secpod.oval:def:67920 The host is installed with Apple iTunes before 12.10.8 or iCloud before 7.20 and is prone to a command injection vulnerability. A flaw is present in the application, which fails to properly handle an escaping issue. Successful exploitation could allow an attacker to cause command injection. oval:org.secpod.oval:def:67898 The host is installed with Apple iTunes before 12.10.8 or iCloud before 7.20 and is prone to a buffer overflow vulnerability. A flaw is present in the application, which fails to properly handle a checks issue. Successful exploitation could allow an attacker to cause unspecified impact. oval:org.secpod.oval:def:67899 The host is installed with Apple iTunes before 12.10.8 or iCloud before 7.20 and is prone to a buffer overflow vulnerability. A flaw is present in the application, which fails to properly handle a checks issue. Successful exploitation could allow an attacker to cause unspecified impact. oval:org.secpod.oval:def:67894 The host is installed with Apple iTunes before 12.10.8 or iCloud before 7.20 and is prone to a buffer overflow vulnerability. A flaw is present in the application, which fails to properly handle a checks issue. Successful exploitation could allow an attacker to cause unspecified impact. oval:org.secpod.oval:def:67893 The host is installed with Apple iTunes before 12.10.8 or iCloud before 7.20 and is prone to a buffer overflow vulnerability. A flaw is present in the application, which fails to properly handle a checks issue. Successful exploitation could allow an attacker to cause unspecified impact. oval:org.secpod.oval:def:67896 The host is installed with Apple iTunes before 12.10.8 or iCloud before 7.20 and is prone to a buffer overflow vulnerability. A flaw is present in the application, which fails to properly handle a checks issue. Successful exploitation could allow an attacker to cause unspecified impact. oval:org.secpod.oval:def:67895 The host is installed with Apple iTunes before 12.10.8 or iCloud before 7.20 and is prone to a buffer overflow vulnerability. A flaw is present in the application, which fails to properly handle a checks issue. Successful exploitation could allow an attacker to cause unspecified impact. oval:org.secpod.oval:def:67897 The host is installed with Apple iTunes before 12.10.8 or iCloud before 7.20 and is prone to a buffer overflow vulnerability. A flaw is present in the application, which fails to properly handle a checks issue. Successful exploitation could allow an attacker to cause unspecified impact. oval:org.secpod.oval:def:67892 The host is installed with Apple iTunes before 12.10.8 or iCloud before 7.20 and is prone to a buffer overflow vulnerability. A flaw is present in the application, which fails to properly handle a checks issue. Successful exploitation could allow an attacker to cause unspecified impact. oval:org.secpod.oval:def:9597 The host is installed with Google Chrome before 25.0.1364.97 or Apple iTunes 11.0.3 and is prone to memory corruption vulnerability. A flaw is present in the application, which fails to properly implement web audio nodes. Successful exploitation allows remote attackers to cause a denial of service. oval:org.secpod.oval:def:53616 The host is installed with Apple iTunes before 12.9.4 or Apple iCloud before 7.11 and is prone to a buffer overflow vulnerability. A flaw is present in the applications, which fail to properly handle malicious application. Successful exploitation could allow attackers to elevate privileges. oval:org.secpod.oval:def:15911 The host is installed with Apple iTunes before 11.1.2 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to handle a crafted website. Successful exploitation could allow attackers to crash the service. oval:org.secpod.oval:def:4410 The host is installed with Apple iTunes before 9.2 and is prone to multiple integer overflow vulnerabilities. The flaws are present in the application, which fails to handle a crafted TIFF file. Successful exploitation could allow attackers to crash the service. oval:org.secpod.oval:def:317 The host is installed with Apple iTunes before 10.2 or Apple Safari before 5.0.4 and is prone to denial of service vulnerability. A flaw is present in WebKit, which fails to prevent man-in-the-middle attack while browsing the iTunes Store via iTunes. Successful exploitation could allow remote attack ... oval:org.secpod.oval:def:57653 The host is missing a security update according to Apple advisory, APPLE-SA-2019-7-23-2. The update is required to fix multiple vulnerabilities. The flaws are present in the application which fails to handle crafted data. Successful exploitation could allow attackers to execute arbitrary code. oval:org.secpod.oval:def:45879 The host is installed with Apple iCloud before 7.5 or Apple iTunes before 12.7.5 and is prone to a buffer overflow vulnerability. A flaw is present in the application, which fails to properly perform state management. Successful exploitation could allow local user to read a persistent device identif ... oval:org.secpod.oval:def:45880 The host is installed with Apple iCloud before 7.5 or Apple iTunes before 12.7.5 and is prone to a buffer overflow vulnerability. A flaw is present in the application, which fails to properly perform state management. Successful exploitation could allow local user to modify the state of the Keychain ... oval:org.secpod.oval:def:45881 The host is installed with Apple iCloud before 7.5 or Apple iTunes before 12.7.5 and is prone to a buffer overflow vulnerability. A flaw is present in the application, which fails to properly perform state management. Successful exploitation could allow local user to view sensitive user information. oval:org.secpod.oval:def:58914 The host is installed with Apple iTunes before 12.10.1 or Apple iCloud before 7.14 and is prone to an arbitrary code execution vulnerability. A flaw is present in the applications, which fail to properly handle buffer overflow. Successful exploitation could allow attackers to execute arbitrary code ... oval:org.secpod.oval:def:58913 The host is missing a security update according to Apple advisory, APPLE-SA-2019-10-07-2. The update is required to fix multiple vulnerabilities. The flaws are present in the application which fails to handle crafted data. Successful exploitation could allow attackers to execute arbitrary code. oval:org.secpod.oval:def:2773 The host is installed with Google Chrome before 15.0.874.102 or Apple iTunes before 10.6 or Apple Safari before 5.1.4 and is prone to a use-after-free vulnerability. A flaw is present in the applications, which fail to properly handle editing operations in conjunction with an unknown plug-in. Succes ... oval:org.secpod.oval:def:2776 The host is installed with Google Chrome before 15.0.874.102 or Apple iTunes before 10.6 or Apple Safari before 5.1.4 and is prone to a use-after-free vulnerability. A flaw is present in the applications, which fail to handle stale style bugs. Successful exploitation could allow attackers to crash t ... oval:org.secpod.oval:def:2761 The host is installed with Google Chrome before 14.0.835.202 or Apple iTunes before 10.6 or Apple Safari before 5.1.4 and is prone to a denial of service vulnerability. A flaw is present in the applications, which fail to handle SVG text. Successful exploitation could allow attackers to crash the se ... oval:org.secpod.oval:def:2486 The host is installed with Google Chrome before 14.0.835.163 or Apple iTunes before 10.6 or Apple Safari before 5.1.4 and is prone to use-after-free vulnerability. A flaw is present in the applications, which fail to properly handle unload event. Successful exploitation allows remote attackers to ca ... oval:org.secpod.oval:def:2485 The host is installed with Google Chrome before 14.0.835.163 or Apple iTunes before 10.6 or Apple Safari before 5.1.4 and is prone to use-after-free vulnerability. A flaw is present in the applications, which fail to properly handle the document loader. Successful exploitation allows remote attacke ... oval:org.secpod.oval:def:1803 The host is installed with Apple Safari version less than or equal to 5.0.5 or Apple iTunes before 10.5 and is prone to denial of service vulnerability. A flaw is present in the application which fails to handle crafted web site. Successful exploitation allows remote attackers to execute arbitrary c ... oval:org.secpod.oval:def:58921 The host is installed with Apple iTunes before 12.10.1 or Apple iCloud before 7.14 and is prone to an arbitrary code execution vulnerability. A flaw is present in the applications, which fail to properly handle multiple memory corruption issues. Successful exploitation could allow attackers to execu ... oval:org.secpod.oval:def:15915 The host is installed with Apple iTunes before 11.1.2 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to handle a crafted website. Successful exploitation could allow attackers to crash the service. oval:org.secpod.oval:def:15916 The host is installed with Apple iTunes before 11.1.2 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to handle a crafted website. Successful exploitation could allow attackers to crash the service. oval:org.secpod.oval:def:15914 The host is installed with Apple iTunes before 11.1.4 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to handle a crafted website. Successful exploitation could allow attackers to crash the service. oval:org.secpod.oval:def:6225 The host is installed with Google Chrome before 20.0.1132.43 or Apple Tunes before 10.7 and is prone to use-after-free vulnerability. A flaw is present in the application, which fails to handle SVG references. Successful exploitation allows remote attackers to cause a denial of service or possibly h ... oval:org.secpod.oval:def:15917 The host is missing a security update according to apple advisory, APPLE-SA-2013-10-22-8. The update is required to fix multiple memory corruption vulnerabilities. The flaws are present in the application, which fails to handle crafted data. Successful exploitation could allow attackers to crash the ... oval:org.secpod.oval:def:15905 The host is installed with Apple iTunes before 11.1.4 and is prone to a denial of service vulnerability. A flaw is present in the application, which fails to handle a crafted website. Successful exploitation could allow attackers to crash the service. oval:org.secpod.oval:def:6784 The host is installed with Google Chrome before 21.0.1180.89 and is prone to a denial of service vulnerability. A flaw is present in the application, which fails to properly handle a crafted XSLT expression. Successful exploitation could allow attackers to crash the service. oval:org.secpod.oval:def:6783 The host is installed with Google Chrome before 21.0.1180.89 and is prone to a denial of service vulnerability. A flaw is present in the application, which fails to properly handle XSL transforms. Successful exploitation could allow attackers to crash the service. oval:org.secpod.oval:def:16642 The host is missing a security update according to Apple advisory, APPLE-SA-2014-01-22-1. The update is required to fix multiple vulnerabilities. The flaws are present in the application, which fails to properly handle the contents of the iTunes Tutorials window. Successful exploitation allows attac ... oval:org.secpod.oval:def:1417 The host is installed with Google Chrome before 12.0.742.112 or Apple Safari before 5..1.1 or Apple iTunes before 10.5 and is prone to use-after-free vulnerability. A flaw is present in the application which fails to properly handle SVG use elements. Successful exploitation allows attacker to cause ... oval:org.secpod.oval:def:1924 The host is installed with Google Chrome before 13.0.782.107 or Apple Safari before 5.1.1 and is prone to a security bypass vulnerability. A flaw is present in the application, which fails to handle base URI. Successful exploitation could allow attackers to bypass security and gain sensitive informa ... oval:org.secpod.oval:def:1925 The host is installed with Google Chrome before 13.0.782.107 or Apple Safari before 5.1.1 or Apple iTunes before 10.5 and is prone to a use-after-free vulnerability. A flaw is present in the application, which fails to handle display box function. Successful exploitation allows attacker to crash the ... oval:org.secpod.oval:def:1926 The host is installed with Google Chrome before 13.0.782.107 or Apple Safari before 5.1.1 and is prone to a cross site scripting vulnerability. A flaw is present in the application, which fails to enforce proper security restrictions. Successful exploitation allows attackers to bypass same origin po ... oval:org.secpod.oval:def:1931 The host is installed with Google Chrome before 13.0.782.107 or Apple Safari before 5.1.1 and is prone to an information disclosure vulnerability. A flaw is present in the application, which fails to enforce proper security restrictions. Successful exploitation could allow attacker to disclose poten ... oval:org.secpod.oval:def:1932 The host is installed with Google Chrome before 13.0.782.107 or Apple Safari before 5.1.1 or Apple iTunes before 10.5 and is prone to a Use-after-free vulnerability. A flaw is present in the application, which fails to handle html range. Successful exploitation could allow attackers to crash the ser ... oval:org.secpod.oval:def:1934 The host is installed with Google Chrome before 13.0.782.107 or Apple Safari before 5.1.1 or Apple iTunes before 10.5 and is prone to a use-after-free vulnerability. A flaw is present in the application, which fails to properly handle resource caching. Successful exploitation could allow attackers t ... oval:org.secpod.oval:def:1939 The host is installed with Google Chrome before 13.0.782.107 or Apple Safari before 5.1.1 or Apple iTunes before 10.5 and is prone to a use-after-free vulnerability. A flaw is present in the application, which fails to handle float removal. Successful exploitation could allow attackers to crash the ... oval:org.secpod.oval:def:1941 The host is installed with Google Chrome before 13.0.782.107 or Apple Safari before 5.1.1 or Apple iTunes before 10.5 and is prone to a Use-after-free vulnerability. A flaw is present in the application, which fails to properly handle floating styles. Successful exploitation could allow an attacker ... oval:org.secpod.oval:def:1943 The host is installed with Google Chrome before 13.0.782.107 or Apple Safari before 5.1.1 or Apple iTunes before 10.5 and is prone to a buffer overflow vulnerability. A flaw is present in the application, which fails to properly implement inspector serialization functionality. Successful exploitatio ... oval:org.secpod.oval:def:1951 The host is installed with Google Chrome before 13.0.782.107 or Apple Safari before 5.1.1 or Apple iTunes before 10.5 and is prone to a denial of service vulnerability. A flaw is present in the application, which fails to properly track line boxes during rendering. Successful exploitation could allo ... oval:org.secpod.oval:def:2220 The host is installed with Google Chrome before 13.0.782.215 or Apple Safari before 5.1.1 or Apple iTunes before 10.5 and is prone to an use-after-free vulnerability. A flaw is present in the application, which fails to handle text searching properly. Successful exploitation could allow attackers to ... oval:org.secpod.oval:def:2222 The host is installed with Google Chrome before 13.0.782.215 or Apple iTunes before 10.6 or Apple Safari before 5.1.4 and is prone to a use-after-free vulnerability. A flaw is present in the applications, which fail to handle user supplied input. Successful exploitation could allow attackers to cras ... oval:org.secpod.oval:def:2224 The host is installed with Google Chrome before 13.0.782.215 or Apple Safari before 5.1.1 or Apple iTunes before 10.5 and is prone to a use-after-free vulnerability. A flaw is present in the application, which fails to sanitize user supplied input. Successful exploitation could allow attackers to cr ... oval:org.secpod.oval:def:2466 The host is installed with Google Chrome before 14.0.835.163 or Apple Safari before 5.1.1 or Apple iTunes before 10.5 and is prone to denial of service vulnerability. A flaw is present in the application, which does not properly handle boxes. Successful exploitation allows remote attackers to cause ... oval:org.secpod.oval:def:2472 The host is installed with Google Chrome before 14.0.835.163 or Apple iTunes before 10.6 or Apple Safari before 5.1.4 and is prone to use-after-free vulnerability. A flaw is present in the applications, which fail to properly handle table styles. Successful exploitation allows remote attackers to ca ... oval:org.secpod.oval:def:2475 The host is installed with Google Chrome before 14.0.835.163 or Apple iTunes before 10.6 or Apple Safari before 5.1.4 and is prone to use-after-free vulnerability. A flaw is present in the applications, which fail to properly handle focus controller. Successful exploitation allows remote attackers t ... oval:org.secpod.oval:def:2477 The host is installed with Google Chrome before 14.0.835.163 or Apple iTunes before 10.6 or Apple Safari before 5.1.4 and is prone to denial of service vulnerability. A flaw is present in the applications, which does not properly handle Cascading Style Sheets (CSS) token sequences. Successful exploi ... oval:org.secpod.oval:def:2478 The host is installed with Google Chrome before 14.0.835.163 or Apple iTunes before 10.6 or Apple Safari before 5.1.4 and is prone to use-after-free vulnerability. A flaw is present in the applications, which fail to properly handle ruby / table style. Successful exploitation allows remote attackers ... oval:org.secpod.oval:def:4608 The host is installed with Apple iTunes before 10.6 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to handle vectors related to a crafted website. Successful exploitation could allow attackers to crash the service. oval:org.secpod.oval:def:11131 The host is installed with Apple iTunes before 11.0.3 and is prone to a man in the middle attack vulnerability. A flaw is present in the application, which fails to properly handle multiple memory corruption issues. Successful exploitation could allow attackers to crash the service or execute arbitr ... oval:org.secpod.oval:def:11132 The host is installed with Apple iTunes before 11.0.3 and is prone to a man in the middle attack vulnerability. A flaw is present in the application, which fails to properly handle multiple memory corruption issues. Successful exploitation could allow attackers to crash the service or execute arbitr ... oval:org.secpod.oval:def:11133 The host is installed with Apple iTunes before 11.0.3 and is prone to a man in the middle attack vulnerability. A flaw is present in the application, which fails to properly handle multiple memory corruption issues. Successful exploitation could allow attackers to crash the service or execute arbitr ... oval:org.secpod.oval:def:11134 The host is installed with Apple iTunes before 11.0.3.42 and is prone to a man in the middle attack vulnerability. A flaw is present in the application, which fails to properly handle a multiple memory corruption issues. Successful exploitation could allow attackers to execute arbitrary code or cras ... oval:org.secpod.oval:def:11135 The host is installed with Apple iTunes before 11.0.3 and is prone to a man in the middle attack vulnerability. A flaw is present in the application, which fails to properly handle multiple memory corruption issues. Successful exploitation could allow attackers to crash the service or execute arbitr ... oval:org.secpod.oval:def:11136 The host is installed with Apple iTunes before 11.0.3 and is prone to a man in the middle attack vulnerability. A flaw is present in the application, which fails to properly handle multiple memory corruption issues. Successful exploitation could allow attackers to crash the service or execute arbitr ... oval:org.secpod.oval:def:11162 The host is installed with Apple iTunes before 11.0.3.42 and is prone to a man in the middle attack vulnerability. A flaw is present in the application, which fails to properly handle multiple memory corruption issues. Successful exploitation could allow attackers to crash the service or execute arb ... oval:org.secpod.oval:def:11164 The host is installed with Apple iTunes before 11.0.3 and is prone to a man in the middle attack vulnerability. A flaw is present in the application, which fails to properly handle multiple memory corruption issues. Successful exploitation could allow attackers to crash the service or execute arbitr ... oval:org.secpod.oval:def:11165 The host is installed with Apple iTunes before 11.0.3 and is prone to a man in the middle attack vulnerability. A flaw is present in the application, which fails to properly handle multiple memory corruption issues. Successful exploitation could allow attackers to crash the service or execute arbitr ... oval:org.secpod.oval:def:11166 The host is installed with Apple iTunes before 11.0.3 and is prone to a man in the middle attack vulnerability. A flaw is present in the application, which fails to properly handle multiple memory corruption issues. Successful exploitation could allow attackers to crash the service or execute arbitr ... oval:org.secpod.oval:def:11140 The host is installed with Apple iTunes before 11.0.3.42 and is prone to man in the middle attack vulnerability. A flaw is present in the application, which fails to properly handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:11141 The host is installed with Apple iTunes before 11.0.3 and is prone to a man in the middle attack vulnerability. A flaw is present in the application, which fails to properly handle multiple memory corruption issues. Successful exploitation could allow attackers to crash the service or execute arbitr ... oval:org.secpod.oval:def:11142 The host is installed with Apple iTunes before 11.0.3 and is prone to a man in the middle attack vulnerability. A flaw is present in the application, which fails to properly handle multiple memory corruption issues. Successful exploitation could allow attackers to crash the service or execute arbitr ... oval:org.secpod.oval:def:11143 The host is installed with Apple iTunes before 11.0.3 and is prone to a man in the middle attack vulnerability. A flaw is present in the application, which fails to properly handle multiple memory corruption issues. Successful exploitation could allow attackers to crash the service or execute arbitr ... oval:org.secpod.oval:def:11144 The host is installed with Apple iTunes before 11.0.3 and is prone to a man in the middle attack vulnerability. A flaw is present in the application, which fails to properly handle multiple memory corruption issues. Successful exploitation could allow attackers to crash the service or execute arbitr ... oval:org.secpod.oval:def:11145 The host is installed with Apple iTunes before 11.0.3 and is prone to a man in the middle attack vulnerability. A flaw is present in the application, which fails to properly handle multiple memory corruption issues. Successful exploitation could allow attackers to crash the service or execute arbitr ... oval:org.secpod.oval:def:11146 The host is installed with Apple iTunes before 11.0.3 and is prone to a man in the middle attack vulnerability. A flaw is present in the application, which fails to properly handle multiple memory corruption issues. Successful exploitation could allow attackers to crash the service or execute arbitr ... oval:org.secpod.oval:def:11137 The host is installed with Apple iTunes before 11.0.3 and is prone to a man in the middle attack vulnerability. A flaw is present in the application, which fails to properly handle multiple memory corruption issues. Successful exploitation could allow attackers to crash the service or execute arbitr ... oval:org.secpod.oval:def:11138 The host is installed with Apple iTunes before 11.0.3 and is prone to a man in the middle attack vulnerability. A flaw is present in the application, which fails to properly handle multiple memory corruption issues. Successful exploitation could allow attackers to crash the service or execute arbitr ... oval:org.secpod.oval:def:11139 The host is installed with Apple iTunes before 11.0.3 and is prone to a man in the middle attack vulnerability. A flaw is present in the application, which fails to properly handle multiple memory corruption issues. Successful exploitation could allow attackers to crash the service or execute arbitr ... oval:org.secpod.oval:def:32253 The host is installed with Apple iTunes before 12.3.2 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted web site. Successful exploitation could allow remote attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:32250 The host is installed with Apple iTunes before 12.3.2 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted web site. Successful exploitation could allow remote attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:32252 The host is installed with Apple iTunes before 12.3.2 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted web site. Successful exploitation could allow remote attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:32251 The host is installed with Apple iTunes before 12.3.2 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted web site. Successful exploitation could allow remote attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:32247 The host is installed with Apple iTunes before 12.3.2 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted web site. Successful exploitation could allow remote attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:32246 The host is installed with Apple iTunes before 12.3.2 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted web site. Successful exploitation could allow remote attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:32249 The host is installed with Apple iTunes before 12.3.2 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted web site. Successful exploitation could allow remote attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:32248 The host is installed with Apple iTunes before 12.3.2 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted web site. Successful exploitation could allow remote attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:32243 The host is installed with Apple iTunes before 12.3.2 and is prone to an information disclosure vulnerability. A flaw is present in the application, which fails to properly handle a crafted web site. Successful exploitation allows to obtain sensitive browsing-history information via a crafted web si ... oval:org.secpod.oval:def:32242 The host is installed with Apple iTunes before 12.3.2 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted web site. Successful exploitation could allow remote attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:32245 The host is installed with Apple iTunes before 12.3.2 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted web site. Successful exploitation could allow remote attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:32244 The host is installed with Apple iTunes before 12.3.2 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted web site. Successful exploitation could allow remote attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:32241 The host is missing a critical security update according to Apple advisory, APPLE-SA-2015-12-11-1. The update is required to fix multiple vulnerabilities. The flaws are present in the application, which fails to properly handle crafted data. Successful exploitation could allow attackers to execute a ... oval:org.secpod.oval:def:3392 The host is installed with Apple Safari before 5.1.1 or Apple iTunes before 10.5 and is prone to a denial of service vulnerability. A flaw is present in the applications, which fail to handle via vectors related to iTunes Store browsing. Successful exploitation could allow to crash the service. oval:org.secpod.oval:def:3390 The host is installed with Apple Safari before 5.1.1 or Apple iTunes before 10.5 and is prone to a denial of service vulnerability. A flaw is present in the applications, which fail to handle via vectors related to iTunes Store browsing. Successful exploitation could allow to crash the service. oval:org.secpod.oval:def:3375 The host is installed with Apple Safari before 5.1.1 or Apple iTunes before 10.5 and is prone to a denial of service vulnerability. A flaw is present in the applications, which fail to handle via vectors related to iTunes Store browsing. Successful exploitation could allow to crash the service. oval:org.secpod.oval:def:3373 The host is installed with Apple Safari before 5.1.1 or Apple iTunes before 10.5 and is prone to a denial of service vulnerability. A flaw is present in the applications, which fail to handle via vectors related to iTunes Store browsing. Successful exploitation could allow to crash the service. oval:org.secpod.oval:def:3379 The host is installed with Apple Safari before 5.1.1 or Apple iTunes before 10.5 and is prone to a denial of service vulnerability. A flaw is present in the applications, which fail to handle via vectors related to iTunes Store browsing. Successful exploitation could allow to crash the service. oval:org.secpod.oval:def:3377 The host is installed with Apple Safari before 5.1.1 or Apple iTunes before 10.5 and is prone to a denial of service vulnerability. A flaw is present in the applications, which fail to handle via vectors related to iTunes Store browsing. Successful exploitation could allow to crash the service. oval:org.secpod.oval:def:3371 The host is installed with Apple Safari before 5.1.1 or Apple iTunes before 10.5 and is prone to a denial of service vulnerability. A flaw is present in the applications, which fail to handle via vectors related to iTunes Store browsing. Successful exploitation could allow to crash the service. oval:org.secpod.oval:def:3386 The host is installed with Apple Safari before 5.1.1 or Apple iTunes before 10.5 and is prone to a denial of service vulnerability. A flaw is present in the applications, which fail to handle via vectors related to iTunes Store browsing. Successful exploitation could allow to crash the service. oval:org.secpod.oval:def:3384 The host is installed with Apple Safari before 5.1.1 or Apple iTunes before 10.5 and is prone to a denial of service vulnerability. A flaw is present in the applications, which fail to handle via vectors related to iTunes Store browsing. Successful exploitation could allow to crash the service. oval:org.secpod.oval:def:3388 The host is installed with Apple Safari before 5.1.1 or Apple iTunes before 10.5 and is prone to a denial of service vulnerability. A flaw is present in the applications, which fail to handle via vectors related to iTunes Store browsing. Successful exploitation could allow to crash the service. oval:org.secpod.oval:def:3381 The host is installed with Apple Safari before 5.1.1 or Apple iTunes before 10.5 and is prone to a denial of service vulnerability. A flaw is present in the applications, which fail to handle via vectors related to iTunes Store browsing. Successful exploitation could allow to crash the service. oval:org.secpod.oval:def:3380 The host is installed with Apple Safari before 5.1.1 or Apple iTunes before 10.5 and is prone to a denial of service vulnerability. A flaw is present in the applications, which fail to handle via vectors related to iTunes Store browsing. Successful exploitation could allow to crash the service. oval:org.secpod.oval:def:3353 The host is installed with Apple Safari before 5.1.1 or Apple iTunes before 10.5 and is prone to a denial of service vulnerability. A flaw is present in the applications, which fail to handle via vectors related to iTunes Store browsing. Successful exploitation could allow to crash the service. oval:org.secpod.oval:def:3350 The host is installed with Apple Safari before 5.1.1 or Apple iTunes before 10.5 and is prone to a denial of service vulnerability. A flaw is present in the applications, which fail to handle via vectors related to iTunes Store browsing. Successful exploitation could allow to crash the service. oval:org.secpod.oval:def:3351 The host is installed with Apple Safari before 5.1.1 or Apple iTunes before 10.5 and is prone to a denial of service vulnerability. A flaw is present in the applications, which fail to handle via vectors related to iTunes Store browsing. Successful exploitation could allow to crash the service. oval:org.secpod.oval:def:3355 The host is installed with Apple Safari before 5.1.1 or Apple iTunes before 10.5 and is prone to a denial of service vulnerability. A flaw is present in the applications, which fail to handle via vectors related to iTunes Store browsing. Successful exploitation could allow to crash the service. oval:org.secpod.oval:def:3359 The host is installed with Apple Safari before 5.1.1 or Apple iTunes before 10.5 and is prone to a denial of service vulnerability. A flaw is present in the applications, which fail to handle via vectors related to iTunes Store browsing. Successful exploitation could allow to crash the service. oval:org.secpod.oval:def:3363 The host is installed with Apple Safari before 5.1.1 or Apple iTunes before 10.5 and is prone to a denial of service vulnerability. A flaw is present in the applications, which fail to handle via vectors related to iTunes Store browsing. Successful exploitation could allow to crash the service. oval:org.secpod.oval:def:3361 The host is installed with Apple Safari before 5.1.1 or Apple iTunes before 10.5 and is prone to a denial of service vulnerability. A flaw is present in the applications, which fail to handle via vectors related to iTunes Store browsing. Successful exploitation could allow to crash the service. oval:org.secpod.oval:def:3367 The host is installed with Apple Safari before 5.1.1 or Apple iTunes before 10.5 and is prone to a denial of service vulnerability. A flaw is present in the applications, which fail to handle via vectors related to iTunes Store browsing. Successful exploitation could allow to crash the service. oval:org.secpod.oval:def:3365 The host is installed with Apple Safari before 5.1.1 or Apple iTunes before 10.5 and is prone to a denial of service vulnerability. A flaw is present in the applications, which fail to handle via vectors related to iTunes Store browsing. Successful exploitation could allow to crash the service. oval:org.secpod.oval:def:3369 The host is installed with Apple Safari before 5.1.1 or Apple iTunes before 10.5 and is prone to a denial of service vulnerability. A flaw is present in the applications, which fail to handle via vectors related to iTunes Store browsing. Successful exploitation could allow to crash the service. oval:org.secpod.oval:def:37237 The host is installed with Apple iTunes before 12.5.1 and is prone to an information disclosure vulnerability. A flaw is present in the application, which fails to handle location variable. Successful exploitation allows attackers to leak sensitive data. oval:org.secpod.oval:def:37234 The host is installed with Apple iTunes before 12.5.1 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to handle crafted web content. Successful exploitation allows attackers to execute arbitrary code. oval:org.secpod.oval:def:37229 The host is installed with Apple iTunes before 12.5.1 and is prone to a privilege escalation vulnerability. A flaw is present in the application, which fails to properly handle WKWebView certificate validation. Successful exploitation allows attackers in a privileged network position may be able to ... oval:org.mitre.oval:def:7561 ImageIO in Apple Safari before 4.0.5 and iTunes before 9.1 on Windows does not ensure that memory access is associated with initialized memory, which allows remote attackers to obtain potentially sensitive information from process memory via a crafted TIFF image. oval:org.secpod.oval:def:3975 The host is missing an important security update according to Apple advisory, APPLE-SA-2011-10-11-1. The update is required to fix multiple denial of service vulnerabilities. The flaws are present in the application, which fails to sanitize user supplied input. Successful exploitation could allow at ... oval:org.secpod.oval:def:4483 The host is installed with Google Chrome before 17.0.963.65 or Apple Tunes before 10.7 and is prone to a denial of service vulnerability. A flaw is present in the application, which fails to properly perform casts of unspecified variables during the splitting of anonymous blocks. Successful exploita ... oval:org.secpod.oval:def:4481 The host is installed with Google Chrome before 17.0.963.65 or Apple Tunes before 10.7 and is prone to a use-after-free vulnerability. A flaw is present in the application, which fails to handle vectors related to quote handling. Successful exploitation could allow attackers to crash the service. oval:org.secpod.oval:def:4482 The host is installed with Google Chrome before 17.0.963.65 or Apple Tunes before 10.7 and is prone to a use-after-free vulnerability. A flaw is present in the application, which fails to handle vectors related to multi-column handling. Successful exploitation could allow attackers to crash the serv ... oval:org.secpod.oval:def:4480 The host is installed with Google Chrome before 17.0.963.65 or Apple Tunes before 10.7 and is prone to an denial of service vulnerability. A flaw is present in the application, which fails to handle a crafted document. Successful exploitation could allow attackers to crash the service. oval:org.secpod.oval:def:4478 The host is installed with Google Chrome before 17.0.963.65 or Apple Tunes before 10.7 and is prone to an use-after-free vulnerability. A flaw is present in the application, which fails to handle vectors related to the handling of table sections. Successful exploitation could allow attackers to cras ... oval:org.secpod.oval:def:4479 The host is installed with Google Chrome before 17.0.963.65 or Apple Tunes before 10.7 and is prone to an use-after-free vulnerability. A flaw is present in the application, which fails to handle vectors related to the handling of class attributes. Successful exploitation could allow attackers to cr ... oval:org.secpod.oval:def:4476 The host is installed with Google Chrome before 17.0.963.65 or Apple Tunes before 10.7 and is prone to an use-after-free vulnerability. A flaw is present in the application, which fails to handle SVG animation elements. Successful exploitation could allow attackers to crash the service. oval:org.secpod.oval:def:4477 The host is installed with Google Chrome before 17.0.963.65 or Apple Tunes before 10.7 and is prone to an use-after-free vulnerability. A flaw is present in the application, which fails to handle vectors involving a flexbox (aka flexible box) in conjunction with the floating of elements. Successful ... oval:org.secpod.oval:def:3576 The host is installed with Google Chrome before 16.0.912.63 or Apple iTunes before 10.6 or Apple Safari before 5.1.4 and is prone to an out-of-bounds read vulnerability. A flaw is present in the applications, which fail to handle SVG parsing. Successful exploitation could allow attackers to crash th ... oval:org.secpod.oval:def:3575 The host is installed with Google Chrome before 16.0.912.63 or Apple iTunes before 10.6 or Apple Safari before 5.1.4 and is prone to a memory corruption vulnerability. A flaw is present in the applications, which fail to handle property arrays. Successful exploitation could allow attackers to crash ... oval:org.mitre.oval:def:7606 Use-after-free vulnerability in WebKit in Apple Safari before 5.0 or iTunes before 9.2 on Windows, allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via vectors related to hover events. oval:org.mitre.oval:def:7401 WebKit in Apple Safari before 5.0 or iTunes before 9.2 on Windows, does not properly restrict the reading of a canvas that contains an SVG image pattern from a different web site, which allows remote attackers to read images from other sites via a crafted canvas, related to a "cross-site image captu ... oval:org.mitre.oval:def:7499 Heap-based buffer overflow in ColorSync in Apple Mac OS X 10.4.11 and 10.5 before 10.5.8 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted image containing an embedded ColorSync profile. oval:org.mitre.oval:def:7497 Use-after-free vulnerability in WebKit in Apple Safari before 5.0 or Apple iTunes before 9.2 on Windows, allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via an SVG document that contains recursive Use elements, which are not properly handled during ... oval:org.mitre.oval:def:7476 WebKit in Apple Safari before 5.0 or Apple iTunes before 9.2 on Windows, accesses out-of-bounds memory during processing of HTML tables, which allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted HTML document. oval:org.mitre.oval:def:7464 Cross-site scripting (XSS) vulnerability in WebKit in Apple Safari before 5.0 or Apple iTunes before 9.2 on Windows, allows remote attackers to inject arbitrary web script or HTML via vectors involving DOM constructor objects, related to a "scope management issue." oval:org.secpod.oval:def:4584 The host is installed with Apple iTunes before 10.6 or Apple Safari before 5.1.4 and is prone to a memory corruption vulnerability. A flaw is present in the applications, which fail to handle vectors related to a crafted website. Successful exploitation could allow attackers to crash the service. oval:org.secpod.oval:def:4585 The host is installed with Apple iTunes before 10.6 or Apple Safari before 5.1.4 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to handle vectors related to a crafted website. Successful exploitation could allow attackers to crash the service. oval:org.secpod.oval:def:4582 The host is installed with Apple iTunes before 10.6 or Apple Safari before 5.1.4 and is prone to a memory corruption vulnerability. A flaw is present in the applications, which fail to handle vectors related to a crafted website. Successful exploitation could allow attackers to crash the service. oval:org.secpod.oval:def:4583 The host is installed with Apple iTunes before 10.6 or Apple Safari before 5.1.4 and is prone to a memory corruption vulnerability. A flaw is present in the applications, which fail to handle vectors related to a crafted website. Successful exploitation could allow attackers to crash the service. oval:org.secpod.oval:def:4588 The host is installed with Apple iTunes before 10.6 or Apple Safari before 5.1.4 and is prone to a memory corruption vulnerability. A flaw is present in the applications, which fail to handle vectors related to a crafted website. Successful exploitation could allow attackers to crash the service. oval:org.secpod.oval:def:4589 The host is installed with Apple iTunes before 10.6 or Apple Safari before 5.1.4 and is prone to a memory corruption vulnerability. A flaw is present in the applications, which fail to handle vectors related to a crafted website. Successful exploitation could allow attackers to crash the service. oval:org.secpod.oval:def:4586 The host is installed with Apple iTunes before 10.6 or Apple Safari before 5.1.4 and is prone to a memory corruption vulnerability. A flaw is present in the applications, which fail to handle vectors related to a crafted website. Successful exploitation could allow attackers to crash the service. oval:org.secpod.oval:def:4587 The host is installed with Apple iTunes before 10.6 or Apple Safari before 5.1.4 and is prone to a memory corruption vulnerability. A flaw is present in the applications, which fail to handle vectors related to a crafted website. Successful exploitation could allow attackers to crash the service. oval:org.secpod.oval:def:4580 The host is installed with Apple iTunes before 10.6 or Apple Safari before 5.1.4 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to handle vectors related to a crafted website. Successful exploitation could allow attackers to crash the service. oval:org.secpod.oval:def:4581 The host is installed with Apple iTunes before 10.6 or Apple Safari before 5.1.4 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to handle vectors related to a crafted website. Successful exploitation could allow attackers to crash the service. oval:org.secpod.oval:def:4595 The host is installed with Apple iTunes before 10.6 or Apple Safari before 5.1.4 and is prone to a memory corruption vulnerability. A flaw is present in the applications, which fail to handle vectors related to a crafted website. Successful exploitation could allow attackers to crash the service. oval:org.secpod.oval:def:4596 The host is installed with Apple iTunes before 10.6 or Apple Safari before 5.1.4 and is prone to a memory corruption vulnerability. A flaw is present in the applications, which fails to handle vectors related to a crafted website. Successful exploitation could allow attackers to crash the service. oval:org.secpod.oval:def:4593 The host is installed with Apple iTunes before 10.6 or Apple Safari before 5.1.4 and is prone to a memory corruption vulnerability. A flaw is present in the applications, which fail to handle vectors related to a crafted website. Successful exploitation could allow attackers to crash the service. oval:org.secpod.oval:def:4594 The host is installed with Apple iTunes before 10.6 or Apple Safari before 5.1.4 and is prone to a memory corruption vulnerability. A flaw is present in the applications, which fails to handle vectors related to a crafted website. Successful exploitation could allow attackers to crash the service. oval:org.secpod.oval:def:4599 The host is installed with Apple iTunes before 10.6 or Apple Safari before 5.1.4 and is prone to a memory corruption vulnerability. A flaw is present in the applications, which fail to handle vectors related to a crafted website. Successful exploitation could allow attackers to crash the service. oval:org.secpod.oval:def:4597 The host is installed with Apple iTunes before 10.6 or Apple Safari before 5.1.4 and is prone to a memory corruption vulnerability. A flaw is present in the applications, which fail to handle vectors related to a crafted website. Successful exploitation could allow attackers to crash the service. oval:org.secpod.oval:def:4598 The host is installed with Apple iTunes before 10.6 or Apple Safari before 5.1.4 and is prone to a memory corruption vulnerability. A flaw is present in the applications, which fail to handle vectors related to a crafted website. Successful exploitation could allow attackers to crash the service. oval:org.secpod.oval:def:4591 The host is installed with Apple iTunes before 10.6 or Apple Safari before 5.1.4 and is prone to a memory corruption vulnerability. A flaw is present in the applications, which fail to handle vectors related to a crafted website. Successful exploitation could allow attackers to crash the service. oval:org.secpod.oval:def:4592 The host is installed with Apple iTunes before 10.6 or Apple Safari before 5.1.4 and is prone to a memory corruption vulnerability. A flaw is present in the applications, which fail to handle vectors related to a crafted website. Successful exploitation could allow attackers to crash the service. oval:org.secpod.oval:def:4590 The host is installed with Apple iTunes before 10.6 or Apple Safari before 5.1.4 and is prone to a memory corruption vulnerability. A flaw is present in the applications, which fail to handle vectors related to a crafted website. Successful exploitation could allow attackers to crash the service. oval:org.secpod.oval:def:4562 The host is installed with Apple iTunes before 10.6 or Apple Safari before 5.1.4 and is prone to a memory corruption vulnerability. A flaw is present in the applications, which fail to handle vectors related to a crafted website. Successful exploitation could allow attackers to crash the service. oval:org.secpod.oval:def:4563 The host is installed with Apple iTunes before 10.6 or Apple Safari before 5.1.4 and is prone to a memory corruption vulnerability. A flaw is present in the applications, which fail to handle vectors related to a crafted website. Successful exploitation could allow attackers to crash the service. oval:org.secpod.oval:def:4560 The host is installed with Apple iTunes before 10.6 or Apple Safari before 5.1.4 and is prone to a memory corruption vulnerability. A flaw is present in the applications, which fail to handle vectors related to a crafted website. Successful exploitation could allow attackers to crash the service. oval:org.secpod.oval:def:4561 The host is installed with Apple iTunes before 10.6 or Apple Safari before 5.1.4 and is prone to a memory corruption vulnerability. A flaw is present in the applications, which fail to handle vectors related to a crafted website. Successful exploitation could allow attackers to crash the service. oval:org.secpod.oval:def:4566 The host is installed with Apple iTunes before 10.6 or Apple Safari before 5.1.4 and is prone to a memory corruption vulnerability. A flaw is present in the applications, which fail to handle vectors related to a crafted website. Successful exploitation could allow attackers to crash the service. oval:org.secpod.oval:def:4567 The host is installed with Apple iTunes before 10.6 or Apple Safari before 5.1.4 and is prone to a memory corruption vulnerability. A flaw is present in the applications, which fail to handle vectors related to a crafted website. Successful exploitation could allow attackers to crash the service. oval:org.secpod.oval:def:4564 The host is installed with Apple iTunes before 10.6 or Apple Safari before 5.1.4 and is prone to a memory corruption vulnerability. A flaw is present in the applications, which fail to handle vectors related to a crafted website. Successful exploitation could allow attackers to crash the service. oval:org.secpod.oval:def:4565 The host is installed with Apple iTunes before 10.6 or Apple Safari before 5.1.4 and is prone to a memory corruption vulnerability. A flaw is present in the applications, which fail to handle vectors related to a crafted website. Successful exploitation could allow attackers to crash the service. oval:org.secpod.oval:def:4568 The host is installed with Apple iTunes before 10.6 or Apple Safari before 5.1.4 and is prone to a memory corruption vulnerability. A flaw is present in the applications, which fail to handle vectors related to a crafted website. Successful exploitation could allow attackers to crash the service. oval:org.secpod.oval:def:4569 The host is installed with Apple iTunes before 10.6 or Apple Safari before 5.1.4 and is prone to a memory corruption vulnerability. A flaw is present in the applications, which fail to handle vectors related to a crafted website. Successful exploitation could allow attackers to crash the service. oval:org.secpod.oval:def:4573 The host is installed with Apple iTunes before 10.6 or Apple Safari before 5.1.4 and is prone to a memory corruption vulnerability. A flaw is present in the applications, which fails to handle vectors related to a crafted website. Successful exploitation could allow attackers to crash the service. oval:org.secpod.oval:def:4574 The host is installed with Apple iTunes before 10.6 or Apple Safari before 5.1.4 and is prone to a memory corruption vulnerability. A flaw is present in the applications, which fail to handle vectors related to a crafted website. Successful exploitation could allow attackers to crash the service. oval:org.secpod.oval:def:4571 The host is installed with Apple iTunes before 10.6 or Apple Safari before 5.1.4 and is prone to a memory corruption vulnerability. A flaw is present in the applications, which fail to handle vectors related to a crafted website. Successful exploitation could allow attackers to crash the service. oval:org.secpod.oval:def:4572 The host is installed with Apple iTunes before 10.6 or Apple Safari before 5.1.4 and is prone to a memory corruption vulnerability. A flaw is present in the applications, which fail to handle vectors related to a crafted website. Successful exploitation could allow attackers to crash the service. oval:org.secpod.oval:def:4577 The host is installed with Apple iTunes before 10.6 or Apple Safari before 5.1.4 and is prone to a memory corruption vulnerability. A flaw is present in the applications, which fail to handle vectors related to a crafted website. Successful exploitation could allow attackers to crash the service. oval:org.secpod.oval:def:4578 The host is installed with Apple iTunes before 10.6 or Apple Safari before 5.1.4 and is prone to a memory corruption vulnerability. A flaw is present in the applications, which fail to handle vectors related to a crafted website. Successful exploitation could allow attackers to crash the service. oval:org.secpod.oval:def:4575 The host is installed with Apple iTunes before 10.6 or Apple Safari before 5.1.4 and is prone to a memory corruption vulnerability. A flaw is present in the applications, which fail to handle vectors related to a crafted website. Successful exploitation could allow attackers to crash the service. oval:org.secpod.oval:def:4576 The host is installed with Apple iTunes before 10.6 or Apple Safari before 5.1.4 and is prone to a memory corruption vulnerability. A flaw is present in the applications, which fails to handle vectors related to a crafted website. Successful exploitation could allow attackers to crash the service. oval:org.secpod.oval:def:4579 The host is installed with Apple iTunes before 10.6 or Apple Safari before 5.1.4 and is prone to a memory corruption vulnerability. A flaw is present in the applications, which fail to handle vectors related to a crafted website. Successful exploitation could allow attackers to crash the service. oval:org.secpod.oval:def:4570 The host is installed with Apple iTunes before 10.6 or Apple Safari before 5.1.4 and is prone to a memory corruption vulnerability. A flaw is present in the applications, which fail to handle vectors related to a crafted website. Successful exploitation could allow attackers to crash the service. oval:org.secpod.oval:def:3211 The host is installed with Google Chrome before 15.0.874.120 or Apple iTunes before 10.6 or Apple Safari before 5.1.4 and is prone to an use after free vulnerability. A flaw is present in the applications, which fail to sanitize user supplied input. Successful exploitation could allow attackers to c ... oval:org.secpod.oval:def:4556 The host is installed with Apple iTunes before 10.6 or Apple Safari before 5.1.4 and is prone to a memory corruption vulnerability. A flaw is present in the applications, which fail to handle a crafted website. Successful exploitation could allow attackers to crash the service. oval:org.secpod.oval:def:4559 The host is installed with Apple iTunes before 10.6 or Apple Safari before 5.1.4 and is prone to a memory corruption vulnerability. A flaw is present in the applications, which fail to handle vectors related to a crafted website. Successful exploitation could allow attackers to crash the service. oval:org.secpod.oval:def:4557 The host is installed with Apple iTunes before 10.6 or Apple Safari before 5.1.4 and is prone to a memory corruption vulnerability. A flaw is present in the applications, which fail to handle vectors related to iTunes Store browsing. Successful exploitation could allow attackers to crash the service ... oval:org.secpod.oval:def:4558 The host is installed with Apple iTunes before 10.6 or Apple Safari before 5.1.4 and is prone to a memory corruption vulnerability. A flaw is present in the applications, which fail to handle vectors related to iTunes Store browsing. Successful exploitation could allow attackers to crash the service ... oval:org.secpod.oval:def:47639 The host is installed with Apple iTunes before 12.9 or Apple iCloud before 7.7 and is prone to a use after free vulnerability. A flaw is present in the application, which fail to properly handle crafted content. Successful exploitation could allow attackers to execute arbitrary code. oval:org.secpod.oval:def:47636 The host is installed with Apple iTunes before 12.9 or Apple iCloud before 7.7 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fail to properly handle crafted content. Successful exploitation could allow attackers to execute arbitrary code. oval:org.secpod.oval:def:47635 The host is installed with Apple iTunes before 12.9 or Apple iCloud before 7.7 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fail to properly handle crafted content. Successful exploitation could allow attackers to execute arbitrary code. oval:org.secpod.oval:def:47638 The host is installed with Apple iTunes before 12.9 or Apple iCloud before 7.7 and is prone to a use after free vulnerability. A flaw is present in the application, which fail to properly handle crafted content. Successful exploitation could allow attackers to execute arbitrary code. oval:org.secpod.oval:def:47637 The host is installed with Apple iTunes before 12.9 or Apple iCloud before 7.7 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fail to properly handle crafted content. Successful exploitation could allow attackers to execute arbitrary code. oval:org.secpod.oval:def:47643 The host is installed with Apple iTunes before 12.9 or Apple iCloud before 7.7 and is prone to a use after free vulnerability. A flaw is present in the application, which fail to properly handle crafted content. Successful exploitation could allow attackers to execute arbitrary code. oval:org.secpod.oval:def:47642 The host is installed with Apple iTunes before 12.9 or Apple iCloud before 7.7 and is prone to a use after free vulnerability. A flaw is present in the application, which fail to properly handle crafted content. Successful exploitation could allow attackers to execute arbitrary code. oval:org.secpod.oval:def:47644 The host is installed with Apple iTunes before 12.9 or Apple iCloud before 7.7 and is prone to a use after free vulnerability. A flaw is present in the application, which fail to properly handle crafted content. Successful exploitation could allow attackers to execute arbitrary code. oval:org.secpod.oval:def:47641 The host is installed with Apple iTunes before 12.9 or Apple iCloud before 7.7 and is prone to a use after free vulnerability. A flaw is present in the application, which fail to properly handle crafted content. Successful exploitation could allow attackers to execute arbitrary code. oval:org.secpod.oval:def:47640 The host is installed with Apple iTunes before 12.9 or Apple iCloud before 7.7 and is prone to a use after free vulnerability. A flaw is present in the application, which fail to properly handle crafted content. Successful exploitation could allow attackers to execute arbitrary code. oval:org.mitre.oval:def:7519 WebKit in Apple Safari before 5.0 or iTunes on Windows, accesses uninitialized memory during the handling of a use element in an SVG document, which allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted document containing XML that triggers ... oval:org.secpod.oval:def:4411 The host is missing an important security update according to APPLE-SA-2010-06-16-1. The flaws are present in the application, which fails to sanitize user supplied data. Successful exploitation could allow attackers to crash the service. oval:org.mitre.oval:def:7556 WebKit in Apple Safari before 5.0 or iTunes before 9.2 on Windows, does not properly perform ordered list insertions, which allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted HTML document, related to the insertion o ... oval:org.secpod.oval:def:47629 The host is installed with Apple iTunes before 12.9 or Apple iCloud before 7.7 and is prone to a cross-site scripting vulnerability. A flaw is present in the application, which fail to properly handle the "iframe" elements. Successful exploitation could allow attackers to cause an unexpected cross-o ... oval:org.secpod.oval:def:47628 The host is installed with Apple iTunes before 12.9 or Apple iCloud before 7.7 and is prone to an arbitrary code execution vulnerability. A flaw is present in the application, which fail to properly handle crafted data. Successful exploitation could allow attackers to execute arbitrary code. oval:org.secpod.oval:def:47627 The host is installed with Apple iTunes before 12.9 or Apple iCloud before 7.7 and is prone to a cross-site scripting vulnerability. A flaw is present in the application, which fail to properly handle the accessed frame's origin information. Successful exploitation could allow attackers to cause an ... oval:org.secpod.oval:def:47626 The host is installed with Apple iTunes before 12.9 or Apple iCloud before 7.7 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fail to properly handle crafted content. Successful exploitation could allow attackers to cause an ASSERT failure. oval:org.secpod.oval:def:47632 The host is installed with Apple iTunes before 12.9 or Apple iCloud before 7.7 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fail to properly handle crafted content. Successful exploitation could allow attackers to cause an ASSERT failure. oval:org.secpod.oval:def:46300 The host is installed with Apple iCloud before 7.6 or Apple iTunes before 12.8 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle crafted content. Successful exploitation could allow attackers to crash the service. oval:org.secpod.oval:def:47631 The host is installed with Apple iTunes before 12.9 or Apple iCloud before 7.7 and is prone to a cross-site scripting vulnerability. A flaw is present in the application, which fail to properly handle URL validation issue. Successful exploitation could allow attackers to exfiltrate image data cross- ... oval:org.secpod.oval:def:47634 The host is installed with Apple iTunes before 12.9 or Apple iCloud before 7.7 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fail to properly handle crafted content. Successful exploitation could allow attackers to execute arbitrary code. oval:org.secpod.oval:def:47633 The host is installed with Apple iTunes before 12.9 or Apple iCloud before 7.7 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fail to properly handle crafted content. Successful exploitation could allow attackers to execute arbitrary code. oval:org.secpod.oval:def:47630 The host is installed with Apple iTunes before 12.9 or Apple iCloud before 7.7 and is prone to a cross-site scripting vulnerability. A flaw is present in the application, which fail to properly handle the URL validation. Successful exploitation could allow attackers to execute scripts in the context ... oval:org.secpod.oval:def:4600 The host is installed with Apple iTunes before 10.6 or Apple Safari before 5.1.4 and is prone to a memory corruption vulnerability. A flaw is present in the applications, which fail to handle vectors related to a crafted website. Successful exploitation could allow attackers to crash the service. oval:org.secpod.oval:def:4603 The host is installed with Apple iTunes before 10.6 or Apple Safari before 5.1.4 and is prone to a memory corruption vulnerability. A flaw is present in the applications, which fail to handle vectors related to a crafted website. Successful exploitation could allow attackers to crash the service. oval:org.secpod.oval:def:4604 The host is installed with Apple iTunes before 10.6 or Apple Safari before 5.1.4 and is prone to a memory corruption vulnerability. A flaw is present in the applications, which fail to handle vectors related to a crafted website. Successful exploitation could allow attackers to crash the service. oval:org.secpod.oval:def:4601 The host is installed with Apple iTunes before 10.6 or Apple Safari before 5.1.4 and is prone to a memory corruption vulnerability. A flaw is present in the applications, which fail to handle vectors related to a crafted website. Successful exploitation could allow attackers to crash the service. oval:org.secpod.oval:def:4602 The host is installed with Apple iTunes before 10.6 or Apple Safari before 5.1.4 and is prone to a memory corruption vulnerability. A flaw is present in the applications, which fail to handle vectors related to a crafted website. Successful exploitation could allow attackers to crash the service. oval:org.secpod.oval:def:4607 The host is installed with Apple iTunes before 10.6 or Apple Safari before 5.1.4 and is prone to a memory corruption vulnerability. A flaw is present in the applications, which fail to handle vectors related to a crafted website. Successful exploitation could allow attackers to crash the service. oval:org.secpod.oval:def:4605 The host is installed with Apple iTunes before 10.6 or Apple Safari before 5.1.4 and is prone to a memory corruption vulnerability. A flaw is present in the applications, which fail to handle vectors related to a crafted website. Successful exploitation could allow attackers to crash the service. oval:org.secpod.oval:def:4606 The host is installed with Apple iTunes before 10.6 or Apple Safari before 5.1.4 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to handle vectors related to a crafted website. Successful exploitation could allow attackers to crash the service. oval:org.secpod.oval:def:4610 The host is installed with Apple iTunes before 10.6 or Apple Safari before 5.1.4 and is prone to a memory corruption vulnerability. A flaw is present in the applications, which fail to handle vectors related to iTunes Store browsing. Successful exploitation could allow attackers to crash the service ... oval:org.secpod.oval:def:4611 The host is installed with Apple iTunes before 10.6 or Apple Safari before 5.1.4 and is prone to a memory corruption vulnerability. A flaw is present in the applications, which fail to handle vectors related to iTunes Store browsing. Successful exploitation could allow attackers to crash the service ... oval:org.secpod.oval:def:4614 The host is installed with Apple iTunes before 10.6 or Apple Safari before 5.1.4 and is prone to a memory corruption vulnerability. A flaw is present in the applications, which fail to handle vectors related to iTunes Store browsing. Successful exploitation could allow attackers to crash the service ... oval:org.secpod.oval:def:4615 The host is missing a critical security update according to Apple advisory, APPLE-SA-2012-03-07-1. The update is required to fix multiple memory corruption vulnerabilities. The flaws are present in the application, which fails to handle vectors related to iTunes Store browsing. Successful exploitati ... oval:org.secpod.oval:def:4612 The host is installed with Apple iTunes before 10.6 or Apple Safari before 5.1.4 and is prone to a memory corruption vulnerability. A flaw is present in the applications, which fail to handle vectors related to iTunes Store browsing. Successful exploitation could allow attackers to crash the service ... oval:org.secpod.oval:def:4613 The host is installed with Apple iTunes before 10.6 or Apple Safari before 5.1.4 and is prone to a memory corruption vulnerability. A flaw is present in the applications, which fail to handle vectors related to iTunes Store browsing. Successful exploitation could allow attackers to crash the service ... oval:org.secpod.oval:def:4855 The host is installed with Google Chrome before 17.0.963.83 or Apple Tunes before 10.7 and is prone to use-after-free vulnerability. A flaw is present in the application, which fails to handle vectors related to block splitting. Successful exploitation could allow remote attackers to cause denial of ... oval:org.secpod.oval:def:4858 The host is installed with Google Chrome before 17.0.963.83 or Apple Tunes before 10.7 and is prone to use-after-free vulnerability. A flaw is present in the application, which fails to handle vectors related to the :first-letter pseudo-element. Successful exploitation could allow remote attackers t ... oval:org.secpod.oval:def:4609 The host is installed with Apple iTunes before 10.6 or Apple Safari before 5.1.4 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to handle vectors related to a crafted website. Successful exploitation could allow attackers to crash the service. oval:org.secpod.oval:def:44788 The host is installed with Apple iCloud before 7.4 or Apple iTunes before 12.7.4 and is prone to multiple memory corruption vulnerabilities. The flaws are present in the application, which fails to properly handle crafted data. Successful exploitation could allow attackers to execute arbitrary code. oval:org.secpod.oval:def:44794 The host is installed with Apple iCloud before 7.4 or Apple iTunes before 12.7.4 and is prone to multiple memory corruption vulnerabilities. The flaws are present in the application, which fails to properly handle crafted data. Successful exploitation could allow attackers to execute arbitrary code. oval:org.secpod.oval:def:45883 The host is installed with Apple iCloud before 7.5 or Apple iTunes before 12.7.5 and is prone to a race condition vulnerability. A flaw is present in the application, which fails to properly handle crafted web content. Successful exploitation could allow attackers to execute arbitrary code. oval:org.secpod.oval:def:45884 The host is installed with Apple iCloud before 7.5 or Apple iTunes before 12.7.5 and is prone to a race condition vulnerability. A flaw is present in the application, which fails to properly perform input validation. Successful exploitation could allow attackers to execute arbitrary code. oval:org.secpod.oval:def:45885 The host is installed with Apple iCloud before 7.5 or Apple iTunes before 12.7.5 and is prone to a race condition vulnerability. A flaw is present in the application, which fails to properly perform input validation. Successful exploitation could allow attackers to execute arbitrary code. oval:org.secpod.oval:def:45888 The host is installed with Apple iCloud before 7.5 or Apple iTunes before 12.7.5 and is prone to an address bar spoofing vulnerability. A flaw is present in the application, which fails to an inconsistent user interface issue. Successful exploitation could allow attackers to spoof address. oval:org.secpod.oval:def:45889 The host is installed with Apple iCloud before 7.5 or Apple iTunes before 12.7.5 and is prone to an arbitrary code execution vulnerability. A flaw is present in the application, which fails to properly handle maliciously crafted web content. Successful exploitation could allow attackers to execute a ... oval:org.mitre.oval:def:7591 WebKit in Apple Safari before 5.0 or Apple iTunes before 9.2 on Windows, does not properly handle changes to keyboard focus that occur during processing of key press events, which allows remote attackers to force arbitrary key presses via a crafted HTML document. oval:org.secpod.oval:def:45896 The host is missing a security update according to Apple advisory, APPLE-SA-2018-06-01-3. The update is required to fix multiple vulnerabilities. The flaws are present in the application, which fails to properly handle crafted data. Successful exploitation could allow attackers to execute arbitrary ... oval:org.secpod.oval:def:4485 The host is installed with Google Chrome before 17.0.963.65 or Apple Tunes before 10.7 and is prone to a use-after-free vulnerability. A flaw is present in the application, which fails to properly handle vectors involving SVG use elements. Successful exploitation could allow attackers to crash the s ... oval:org.secpod.oval:def:4486 The host is installed with Google Chrome before 17.0.963.65 or Apple Tunes before 10.7 and is prone to a use-after-free vulnerability. A flaw is present in the application, which fails to properly handle vectors involving a SVG document. Successful exploitation could allow attackers to crash the ser ... oval:org.secpod.oval:def:4484 The host is installed with Google Chrome before 17.0.963.65 or Apple Tunes before 10.7 and is prone to a denial of service vulnerability. A flaw is present in the application, which fails to properly perform casts of unspecified variables during the handling of line boxes. Successful exploitation co ... oval:org.secpod.oval:def:4487 The host is installed with Google Chrome before 17.0.963.65 or Apple Tunes before 10.7 and is prone to a use-after-free vulnerability. A flaw is present in the application, which fails to properly handle vectors involving a SVG document. Successful exploitation could allow attackers to crash the ser ... oval:org.secpod.oval:def:5531 The host is installed with Google Chrome before 18.0.1025.168 or Apple Tunes before 10.7 and is prone to use-after-free vulnerability. A flaw is present in the application, which fails to properly handle memory. Successful exploitation allows remote attackers to cause a denial of service or possibly ... oval:org.secpod.oval:def:5533 The host is installed with Google Chrome before 18.0.1025.168 or Apple Tunes before 10.7 and is prone to use-after-free vulnerability. A flaw is present in the application, which fails to properly handle memory. Successful exploitation allows remote attackers to cause a denial of service. oval:org.secpod.oval:def:4206 The host is installed with Google Chrome before 17.0.963.56 or Apple Tunes before 10.7 and is prone to a denial of service vulnerability. A flaw is present in the application, which fails to properly perform a cast of an unspecified variable. Successful exploitation could allow attackers to crash th ... oval:org.secpod.oval:def:4212 The host is installed with Google Chrome before 17.0.963.56 or Apple Tunes before 10.7 and is prone to an use-after-free vulnerability. A flaw is present in the application, which fails to properly handle vectors related to subframe loading. Successful exploitation could allow attackers to crash the ... oval:org.secpod.oval:def:4217 The host is installed with Google Chrome before 17.0.963.56 or Apple Tunes before 10.7 and is prone to a use-after-free vulnerability. A flaw is present in the application, which fails to properly handle vectors involving counter nodes. Successful exploitation could allow attackers to crash the serv ... oval:org.secpod.oval:def:3571 The host is installed with Google Chrome before 16.0.912.63 or Apple iTunes before 10.7 and is prone to an use-after-free vulnerability. A flaw is present in the application, which fails in Range handling. Successful exploitation could allow attackers to crash the service. oval:org.secpod.oval:def:5529 The host is installed with Google Chrome before 18.0.1025.168 or Apple Tunes before 10.7 and is prone to use-after-free vulnerability. A flaw is present in the application, which fails to properly handle the XML parser. Successful exploitation allows remote attackers to cause a denial of service. oval:org.secpod.oval:def:4063 The host is installed with Google Chrome before 17.0.963.46 or Apple Tunes before 10.7 and is prone to denial of service vulnerability. A flaw is present in the application, which does not properly perform casts of variables during handling of a column span. Successful exploitation allows remote att ... oval:org.secpod.oval:def:4055 The host is installed with Google Chrome before 17.0.963.46 or Apple Tunes before 10.7 and is prone to use-after-free vulnerability. A flaw is present in the application, which fails in error handling for Cascading Style Sheets (CSS) token-sequence data. Successful exploitation allows remote attacke ... oval:org.secpod.oval:def:4052 The host is installed with Google Chrome before 17.0.963.46 or Apple Tunes before 10.7 and is prone to use-after-free vulnerability. A flaw is present in the application, which fails to properly handle vectors related to layout of SVG documents. Successful exploitation allows remote attackers to cau ... oval:org.secpod.oval:def:4053 The host is installed with Google Chrome before 17.0.963.46 or Apple Tunes before 10.7 and is prone to use-after-free vulnerability. A flaw is present in the application, which fails to properly handle vectors related to Cascading Style Sheets (CSS) token sequences. Successful exploitation allows re ... oval:org.secpod.oval:def:4050 The host is installed with Google Chrome before 17.0.963.46 or Apple Tunes before 10.7 and is prone to use-after-free vulnerability. A flaw is present in the application, which fails to properly handle vectors related to mousemove events. Successful exploitation allows remote attackers to cause a de ... oval:org.secpod.oval:def:4033 The host is installed with Google Chrome before 16.0.912.77 or Apple Tunes before 10.7 and is prone to use-after-free vulnerability. A flaw is present in the application, which fails to handle vectors related to DOM selections. Successful exploitation could allow remote attackers to execute arbitrar ... oval:org.secpod.oval:def:4031 The host is installed with Google Chrome before 16.0.912.77 or Apple Tunes before 10.7 and is prone to heap-based buffer overflow vulnerability. A flaw is present in the application, which fails to handle the tree builder in google chrome. Successful exploitation could allow remote attackers to exec ... oval:org.secpod.oval:def:4980 The host is installed with Google Chrome before 18.0.1025.142 or Apple Tunes before 10.7 and is prone to denial of service vulnerability. A flaw is present in the application, which fails to handle text fragments. Successful exploitation could allow remote attackers to cause a denial of service or o ... oval:org.secpod.oval:def:4984 The host is installed with Google Chrome before 18.0.1025.142 or Apple Tunes before 10.7 and is prone to use-after-free vulnerability. A flaw is present in the application, which fails to handle vectors related to SVG clipping. Successful exploitation could allow remote attackers to cause a denial o ... oval:org.secpod.oval:def:4979 The host is installed with Google Chrome before 18.0.1025.142 or Apple Tunes before 10.7 and is prone to denial of service vulnerability. A flaw is present in the application, which fails to handle SVG text elements. Successful exploitation could allow remote attackers to cause a denial of service o ... oval:org.secpod.oval:def:5685 The host is installed with Google Chrome before 19.0.1084.46 or Apple Tunes before 10.7 and is prone to use-after-free vulnerability. A flaw is present in the application, which fails to properly handle vectors involving tables. Successful exploitation allows remote attackers to cause a denial of se ... oval:org.secpod.oval:def:5684 The host is installed with Google Chrome before 19.0.1084.46 or Apple Tunes before 10.7 and is prone to race condition. A flaw is present in the application, which fails to properly handle vectors related to worker processes. Successful exploitation allows remote attackers to cause a denial of servi ... oval:org.secpod.oval:def:5688 The host is installed with Google Chrome before 19.0.1084.46 or Apple Tunes before 10.7 and is prone to use-after-free vulnerability. A flaw is present in the application, which fails to properly handle vectors involving a STYLE element. Successful exploitation allows remote attackers to cause a den ... oval:org.secpod.oval:def:58915 The host is installed with Apple iTunes before 12.10.1 or Apple iCloud before 7.14 and is prone to a universal cross-site scripting vulnerability. A flaw is present in the applications, which fail to properly handle a logic issue. Successful exploitation could allow attackers to execute arbitrary co ... oval:org.secpod.oval:def:58916 The host is installed with Apple iTunes before 12.10.1 or Apple iCloud before 7.14 and is prone to a universal cross site scripting vulnerability. A flaw is present in the applications, which fail to properly handle a logic issue issue. Successful exploitation could allow attackers to execute cross- ... oval:org.secpod.oval:def:58917 The host is installed with Apple iTunes before 12.10.1 or Apple iCloud before 7.14 and is prone to an arbitrary code execution vulnerability. A flaw is present in the applications, which fail to properly handle multiple memory corruption issues. Successful exploitation could allow attackers to execu ... oval:org.secpod.oval:def:58918 The host is installed with Apple iTunes before 12.10.1 or Apple iCloud before 7.14 and is prone to an arbitrary code execution vulnerability. A flaw is present in the applications, which fail to properly handle multiple memory corruption issues. Successful exploitation could allow attackers to execu ... oval:org.secpod.oval:def:58919 The host is installed with Apple iTunes before 12.10.1 or Apple iCloud before 7.14 and is prone to an arbitrary code execution vulnerability. A flaw is present in the applications, which fail to properly handle multiple memory corruption issues. Successful exploitation could allow attackers to execu ... oval:org.secpod.oval:def:5666 The host is installed with Apple Safari before 5.1.7 or Apple iTunes before 10.6.3 and is prone to a memory corruption vulnerability. A flaw is present in the applications, which fail to handle malicious data. Successful exploitation could allow attackers to execute arbitrary code or crash the servi ... oval:org.secpod.oval:def:5054 The host is installed with Google Chrome before 18.0.1025.151 or Apple Tunes before 10.7 and is prone to use-after-free vulnerability. A flaw is present in the application, which fails to handle vectors related to focus handling. Successful exploitation could allow remote attackers to cause denial o ... oval:org.secpod.oval:def:5053 The host is installed with Google Chrome before 18.0.1025.151 or Apple Tunes before 10.7 and is prone to use-after-free vulnerability. A flaw is present in the application, which fails to handle vectors related to style-application commands. Successful exploitation could allow remote attackers to ca ... oval:org.secpod.oval:def:5052 The host is installed with Google Chrome before 18.0.1025.151 or Apple Tunes before 10.7 and is prone to use-after-free vulnerability. A flaw is present in the application, which fails to handle vectors related to the handling of media. Successful exploitation could allow remote attackers to cause d ... oval:org.secpod.oval:def:5051 The host is installed with Google Chrome before 18.0.1025.151 or Apple Tunes before 10.7 and is prone to use-after-free vulnerability. A flaw is present in the application, which fails to handle vectors related to the handling of SVG resources. Successful exploitation could allow remote attackers to ... oval:org.secpod.oval:def:53606 The host is installed with Apple iTunes before 12.9.4 or Apple iCloud before 7.11 and is prone to an arbitrary code execution vulnerability. A flaw is present in the applications, which fail to properly perform memory management. Successful exploitation could allow attackers to execute arbitrary cod ... oval:org.secpod.oval:def:53605 The host is installed with Apple iTunes before 12.9.4 or Apple iCloud before 7.11 and is prone to an arbitrary code execution vulnerability. A flaw is present in the applications, which fail to properly handle memory corruption issues. Successful exploitation could allow attackers to execute arbitra ... oval:org.secpod.oval:def:53608 The host is installed with Apple iTunes before 12.9.4 or Apple iCloud before 7.11 and is prone to an arbitrary code execution vulnerability. A flaw is present in the applications, which fail to properly handle a logic issue. Successful exploitation could allow attackers to execute scripts. oval:org.secpod.oval:def:53607 The host is installed with Apple iTunes before 12.9.4 or Apple iCloud before 7.11 and is prone to an arbitrary code execution vulnerability. A flaw is present in the applications, which fail to properly handle malicious application may be able to elevate privileges. Successful exploitation could all ... oval:org.secpod.oval:def:53609 The host is installed with Apple iTunes before 12.9.4 or Apple iCloud before 7.11 and is prone to an arbitrary code execution vulnerability. A flaw is present in the applications, which fail to properly perform memory handling. Successful exploitation could allow attackers to may execute arbitrary c ... oval:org.secpod.oval:def:53611 The host is installed with Apple iTunes before 12.9.4 or Apple iCloud before 7.11 and is prone to an arbitrary code execution vulnerability. A flaw is present in the applications, which fail to properly handle malicious application. Successful exploitation could allow attackers to execute arbitrary ... oval:org.secpod.oval:def:53610 The host is installed with Apple iTunes before 12.9.4 or Apple iCloud before 7.11 and is prone to an information disclosure vulnerability. A flaw is present in the applications, which fail to properly handle issues in fetch api. Successful exploitation could allow attackers to disclose sensitive inf ... oval:org.secpod.oval:def:53613 The host is installed with Apple iTunes before 12.9.4 or Apple iCloud before 7.11 and is prone to an arbitrary code execution vulnerability. A flaw is present in the applications, which fail to properly handle malicious application. Successful exploitation could allow attackers to execute arbitrary ... oval:org.secpod.oval:def:53612 The host is installed with Apple iTunes before 12.9.4 or Apple iCloud before 7.11 and is prone to an arbitrary code execution vulnerability. A flaw is present in the applications, which fail to properly handle malicious application. Successful exploitation could allow attackers to execute arbitrary ... oval:org.secpod.oval:def:53615 The host is installed with Apple iTunes before 12.9.4 or Apple iCloud before 7.11 and is prone to an arbitrary code execution vulnerability. A flaw is present in the applications, which fail to properly perform memory handling. Successful exploitation could allow attackers to execute arbitrary code. oval:org.secpod.oval:def:53614 The host is installed with Apple iTunes before 12.9.4 or Apple iCloud before 7.11 and is prone to an arbitrary code execution vulnerability. A flaw is present in the applications, which fail to properly handle crafted web content. Successful exploitation could allow attackers to may be able to execu ... oval:org.secpod.oval:def:53617 The host is installed with Apple iTunes before 12.9.4 or Apple iCloud before 7.11 and is prone to an arbitrary code execution vulnerability. A flaw is present in the applications, which fail to properly perform memory handling. Successful exploitation could allow attackers to execute arbitrary code. oval:org.secpod.oval:def:53619 The host is installed with Apple iTunes before 12.9.4 or Apple iCloud before 7.11 and is prone to an arbitrary code execution vulnerability. A flaw is present in the applications, which fail to properly handle malicious application may be able to elevate privileges. Successful exploitation could all ... oval:org.secpod.oval:def:53618 The host is installed with Apple iTunes before 12.9.4 or Apple iCloud before 7.11 and is prone to an universal XSS vulnerability. A flaw is present in the applications, which fail to properly handle crafted web content. Successful exploitation could allow attackers to execute arbitrary code. oval:org.secpod.oval:def:5047 The host is installed with Google Chrome before 18.0.1025.151 or Apple Tunes before 10.7 and is prone to use-after-free vulnerability. A flaw is present in the application, which fails to handle cascading style sheets implementation. Successful exploitation could allow remote attackers to cause deni ... oval:org.secpod.oval:def:5046 The host is installed with Google Chrome before 18.0.1025.151 or Apple Tunes before 10.7 and is prone to use-after-free vulnerability. A flaw is present in the application, which fails to handle cascading style sheets implementation. Successful exploitation could allow remote attackers to cause deni ... oval:org.secpod.oval:def:5049 The host is installed with Google Chrome before 18.0.1025.151 or Apple Tunes before 10.7 and is prone to use-after-free vulnerability. A flaw is present in the application, which fails to handle HTMLMediaElement implementation. Successful exploitation could allow remote attackers to cause denial of ... oval:org.secpod.oval:def:53620 The host is installed with Apple iTunes before 12.9.4 or Apple iCloud before 7.11 and is prone to an arbitrary code execution vulnerability. A flaw is present in the applications, which fail to properly handle malicious application. Successful exploitation could allow attackers to execute arbitrary ... oval:org.secpod.oval:def:53622 The host is installed with Apple iTunes before 12.9.4 or Apple iCloud before 7.11 and is prone to a memory corruption vulnerability. A flaw is present in the applications, which fails to properly handle crafted data. Successful exploitation could allow attackers to bypass sandbox restrictions. oval:org.secpod.oval:def:53621 The host is installed with Apple iTunes before 12.9.4 or Apple iCloud before 7.11 and is prone to an arbitrary code execution vulnerability. A flaw is present in the applications, which fail to properly handle malicious application. Successful exploitation could allow attackers to execute arbitrary ... oval:org.secpod.oval:def:53623 The host is installed with Apple iTunes before 12.9.4 or Apple iCloud before 7.11 and is prone to an arbitrary code execution vulnerability. A flaw is present in the applications, which fail to properly handle malicious application. Successful exploitation could allow attackers to execute arbitrary ... oval:org.secpod.oval:def:53627 The host is missing a security update according to Apple advisory, APPLE-SA-2019-3-25-6. The update is required to fix multiple vulnerabilities. The flaws are present in the application which fails to handle crafted data. Successful exploitation could allow attackers to execute arbitrary code. oval:org.secpod.oval:def:6614 The host is installed with Google Chrome before 21.0.1180.60 or Apple iTunes 11.0.3 and is prone to a use-after-free vulnerability. A flaw is present in the application, which fails to properly handle a crafted document. Successful exploitation could allow remote attackers to crash the service. oval:org.secpod.oval:def:6223 The host is installed with Google Chrome before 20.0.1132.43 or Apple Tunes before 10.7 and is prone to use-after-free vulnerability. A flaw is present in the application, which fails to handle first-letter pseudo-element. Successful exploitation allows remote attackers to cause a denial of service ... oval:org.secpod.oval:def:6213 The host is installed with Google Chrome before 20.0.1132.43 or Apple Tunes before 10.7 and is prone to use-after-free vulnerability. A flaw is present in the application, which fails to handle layout of documents that use the Cascading Style Sheets (CSS) counters feature. Successful exploitation al ... oval:org.secpod.oval:def:6212 The host is installed with Google Chrome before 20.0.1132.43 or Apple Tunes before 10.7 and is prone to use-after-free vulnerability. A flaw is present in the application, which fails to handle tables that have sections. Successful exploitation allows remote attackers to cause a denial of service or ... oval:org.secpod.oval:def:6219 The host is installed with Google Chrome before 20.0.1132.43 or Apple iTunes 11.0.3 and is prone to use-after-free vulnerability. A flaw is present in the application, which fails to handle SVG painting. Successful exploitation allows remote attackers to cause a denial of service or possibly have un ... oval:org.secpod.oval:def:11163 The host is missing an important security update according to Apple security advisory, APPLE-2013-05-16-1. The update is required to fix man in the middle attack vulnerability. The flaws are present in the application, which fails to properly handle multiple memory corruption issues. Successful expl ... oval:org.secpod.oval:def:11160 The host is installed with Apple iTunes before 11.0.3.42 and is prone to a man in the middle attack vulnerability. A flaw is present in the application, which fails to properly handle multiple memory corruption issues. Successful exploitation could allow attackers to crash the service or execute arb ... oval:org.secpod.oval:def:11159 The host is installed with Apple iTunes before 11.0.3.42 and is prone to a man in the middle attack vulnerability. A flaw is present in the application, which fails to properly handle multiple memory corruption issues. Successful exploitation could allow attackers to crash the service or execute arb ... oval:org.secpod.oval:def:11151 The host is installed with Apple iTunes before 11.0.3.42 and is prone to a man in the middle attack vulnerability. A flaw is present in the application, which fails to properly handle multiple memory corruption issues. Successful exploitation could allow attackers to crash the service or execute arb ... oval:org.secpod.oval:def:11152 The host is installed with Apple iTunes before 11.0.3.42 and is prone to a man in the middle attack vulnerability. A flaw is present in the application, which fails to properly handle multiple memory corruption issues. Successful exploitation could allow attackers to crash the service or execute arb ... oval:org.secpod.oval:def:11153 The host is installed with Apple iTunes before 11.0.3.42 and is prone to a man in the middle attack vulnerability. A flaw is present in the application, which fails to properly handle multiple memory corruption issues. Successful exploitation could allow attackers to crash the service or execute arb ... oval:org.secpod.oval:def:11154 The host is installed with Apple iTunes before 11.0.3.42 and is prone to a man in the middle attack vulnerability. A flaw is present in the application, which fails to properly handle multiple memory corruption issues. Successful exploitation could allow attackers to crash the service or execute arb ... oval:org.secpod.oval:def:11155 The host is installed with Apple iTunes before 11.0.3.42 and is prone to a man in the middle attack vulnerability. A flaw is present in the application, which fails to properly handle multiple memory corruption issues. Successful exploitation could allow attackers to crash the service or execute arb ... oval:org.secpod.oval:def:11156 The host is installed with Apple iTunes before 11.0.3.42 and is prone to a man in the middle attack vulnerability. A flaw is present in the application, which fails to properly handle multiple memory corruption issues. Successful exploitation could allow attackers to crash the service or execute arb ... oval:org.secpod.oval:def:11157 The host is installed with Apple iTunes before 11.0.3.42 and is prone to a man in the middle attack vulnerability. A flaw is present in the application, which fails to properly handle multiple memory corruption issues. Successful exploitation could allow attackers to crash the service or execute arb ... oval:org.secpod.oval:def:11158 The host is installed with Apple iTunes before 11.0.3.42 and is prone to a man in the middle attack vulnerability. A flaw is present in the application, which fails to properly handle multiple memory corruption issues. Successful exploitation could allow attackers to crash the service or execute arb ... oval:org.secpod.oval:def:11150 The host is installed with Apple iTunes before 11.0.3.42 and is prone to a man in the middle attack vulnerability. A flaw is present in the application, which fails to properly handle multiple memory corruption issues. Successful exploitation could allow attackers to crash the service or execute arb ... oval:org.secpod.oval:def:11148 The host is installed with Apple iTunes before 11.0.3.42 and is prone to a man in the middle attack vulnerability. A flaw is present in the application, which fails to properly handle multiple memory corruption issues. Successful exploitation could allow attackers to crash the service or execute arb ... oval:org.secpod.oval:def:11149 The host is installed with Apple iTunes before 11.0.3.42 and is prone to a man in the middle attack vulnerability. A flaw is present in the application, which fails to properly handle multiple memory corruption issues. Successful exploitation could allow attackers to crash the service or execute arb ... oval:org.secpod.oval:def:5850 The host is installed with Google Chrome before 19.0.1084.52 or Apple Tunes before 10.7 and is prone to an use-after-free vulnerability. A flaw is present in the application, which fails to properly handle vectors related to the :first-letter pseudo-element. Successful exploitation could allow attac ... oval:org.secpod.oval:def:58920 The host is installed with Apple iTunes before 12.10.1 or Apple iCloud before 7.14 and is prone to an arbitrary code execution vulnerability. A flaw is present in the applications, which fail to properly handle multiple memory corruption issues. Successful exploitation could allow attackers to execu ... oval:org.secpod.oval:def:6389 The host is installed with Google Chrome before 20.0.1132.57 or Apple Tunes before 10.7 and is prone to use-after-free vulnerability. A flaw is present in the application, which fails to handle vectors related to layout height tracking. Successful exploitation allows attackers to cause a denial of s ... oval:org.secpod.oval:def:6390 The host is installed with Google Chrome before 20.0.1132.57 or Apple Tunes before 10.7 and is prone to use-after-free vulnerability. A flaw is present in the applications, which fail to vectors related to counter handling. Successful exploitation allows attackers to cause a denial of service or pos ... oval:org.secpod.oval:def:3342 The host is missing an important security update according to Apple advisory, APPLE-SA-2010-03-30-2. A flaw is present in the application, which fails to sanitize user supplied input. Successful exploitation could allow attackers to disclose sensitive information. oval:org.secpod.oval:def:6093 The host is installed with Apple iTunes before 10.6.3 and is prone to heap buffer overflow vulnerability. A flaw is present in the application, which fails to handle crafted .m3u playlist. Successful exploitation could allow attackers to crash the service. oval:org.secpod.oval:def:6092 The host is missing an important security update according to Apple security advisory, APPLE-SA-2012-06-11-1. The update is required to fix Multiple vulnerabilities. The flaws are present in the application, which fails to sanitize user supplied input. Successful exploitation could allow attackers t ... oval:org.mitre.oval:def:7405 Use-after-free vulnerability in WebKit before r65958, as used in Google Chrome before 6.0.472.59, Apple Safari before 5.0.6 or Apple iTunes before 10.5, allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors that trigger use of document APIs such a ... oval:org.secpod.oval:def:11147 The host is installed with Apple iTunes before 11.0.3 and is prone to a man in the middle attack vulnerability. A flaw is present in the application, which fails to properly verify X.509 certificates. Successful exploitation could allow attackers to spoof HTTPS servers via an arbitrary certificate. oval:org.mitre.oval:def:7427 Apple iTunes before 9.1 allows remote attackers to cause a denial of service (infinite loop) via a crafted MP4 podcast file. oval:org.secpod.oval:def:3098 The host is installed with Apple QuickTime before 7.7.1 or Apple iTunes before 10.5 and is prone to an buffer overflow vulnerability. A flaw is present in the application, which fails to handle a crafted movie file with H.264 encoding. Successful exploitation could allow attackers to execute arbitra ... oval:org.secpod.oval:def:3965 The host is installed with Apple Safari before 5.0.5 or Apple iTunes before 10.5 and is prone to a heap based buffer overflow vulnerability. A flaw is present in the application, as it fails to handle TIFF images. Successful exploitation could allow attackers to execute arbitrary code or crash the s ... oval:org.secpod.oval:def:3966 The host is installed with Apple iTunes before 10.5.1 and is prone to a DNS cache poisoning vulnerability. A flaw is present in the application, as it fails to handle a Trojan horse update. Successful exploitation could allow attackers to execute arbitrary code. oval:org.secpod.oval:def:3967 The host is missing an important security update according to Apple advisory, APPLE-SA-2011-11-14-1. The update is required to fix a DNS cache poisoning vulnerability. A flaw is present in the application, as it fails to handle a Trojan horse update. Successful exploitation could allow attackers to ... oval:org.secpod.oval:def:3934 The host is missing a security update according to Apple advisory, APPLE-SA-2010-07-19-1. The update is required to fix a buffer overflow vulnerability. A flaw is present in the application, which fails to handle a crafted itpc. Successful exploitation could allow attackers to execute arbitrary code ... oval:org.secpod.oval:def:4843 The host is installed with Apple iTunes before 8.2 and is prone to a buffer overflow vulnerability. A flaw is present in the application, which fails to handle a long URL component after a colon. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:4844 The host is missing a security update according to Apple advisory, APPLE-SA-2009-06-01-2. The update is required to fix a buffer overflow vulnerability. A flaw is present in the application, which fails to handle a long URL component after a colon. Successful exploitation could allow attackers to ex ... oval:org.secpod.oval:def:3972 The host is installed with Apple iTunes before 10.5 and is prone to a denial of service vulnerability. A flaw is present in the application, which fails to handle vectors related to iTunes Store browsing. Successful exploitation could allow attackers to crash the service. oval:org.secpod.oval:def:11161 The host is installed with Apple iTunes before 11.0.3.42 and is prone to a man in the middle attack vulnerability. A flaw is present in the application, which fails to properly handle multiple memory corruption issues. Successful exploitation could allow attackers to crash the service or execute arb ... oval:org.secpod.oval:def:89932 The host is installed with Apple iTunes before 12.12.9 and is prone to a privilege escalation vulnerability. A flaw is present in the applications, which fail to properly handle the logic issue. On successful exploitation, an app may be able to elevate privileges. oval:org.secpod.oval:def:89931 The host is installed with Apple iTunes before 12.12.9 and is prone to a privilege escalation vulnerability. A flaw is present in the applications, which fail to properly handle the logic issue. On successful exploitation, an app may be able to elevate privileges. oval:org.secpod.oval:def:89930 The host is missing a security update according to Apple advisory. The update is required to privilege escalation vulnerabilities. The flaws are present in the application, which fails to properly handle the logic issues. On successful exploitation, an app may be able to elevate privileges oval:org.secpod.oval:def:89925 The host is installed with Apple iTunes before 12.12.9 and is prone to a privilege escalation vulnerability. A flaw is present in the applications, which fail to properly handle the logic issue. On successful exploitation, an app may be able to elevate privileges. oval:org.secpod.oval:def:89924 The host is installed with Apple iTunes before 12.12.9 and is prone to a privilege escalation vulnerability. A flaw is present in the applications, which fail to properly handle the logic issue. On successful exploitation, an app may be able to elevate privileges. oval:org.secpod.oval:def:89923 The host is missing a security update according to Apple advisory. The update is required to privilege escalation vulnerabilities. The flaws are present in the application, which fails to properly handle the logic issues. On successful exploitation, an app may be able to elevate privileges oval:org.secpod.oval:def:80190 The host is installed with Apple iTunes before 12.12.4and is prone to an integer overflow vulnerability. A flaw is present in the applications, which fail to properly handle issues in input validation. On successful exploitation, a remote attacker may be able to cause unexpected application terminat ... oval:org.secpod.oval:def:80193 The host is installed with Apple iTunes before 12.12.4and is prone to a privilege escalation vulnerability. A flaw is present in the applications, which fail to properly handle issues in state management. On successful exploitation, a local attacker may be able to elevate their privileges. oval:org.secpod.oval:def:80194 The host is installed with Apple iTunes before 12.12.4and is prone to a logic vulnerability. A flaw is present in the applications, which fail to properly handle issues in state management. On successful exploitation, an application may be able to delete files for which it does not have permission. oval:org.secpod.oval:def:80191 The host is installed with Apple iTunes before 12.12.4and is prone to a memory corruption vulnerability. A flaw is present in the applications, which fail to properly handle issues in input validation. On successful exploitation, processing a maliciously crafted image may lead to arbitrary code exec ... oval:org.secpod.oval:def:80189 The host is missing a security update according to Apple advisory. The update is required to fix multiple vulnerabilities. The flaws are present in the application, which fails to properly handle unspecified vectors. Successful exploitation allows an attacker to cause unspecified impact. oval:org.secpod.oval:def:3970 The host is installed with Apple Safari before 5.0.5 or Apple iTunes before 10.5 and is prone to an integer overflow vulnerability. A flaw is present in the application, which fails to handle images with an embedded ColorSync profile. Successful exploitation could allow attackers to execute arbitrar ... oval:org.secpod.oval:def:3971 The host is installed with Apple iTunes before 10.5 and is prone to a buffer overflow vulnerability. A flaw is present in the application, which fails to handle a crafted Advanced Audio Coding (AAC) stream. Successful exploitation could allow attackers to overflow the buffer. oval:org.secpod.oval:def:80192 The host is installed with Apple iTunes before 12.12.4and is prone to an use after free vulnerability. A flaw is present in the applications, which fail to properly handle issues in memory management. On successful exploitation, processing maliciously crafted web content may lead to arbitrary code e ... oval:org.secpod.oval:def:37231 The host is installed with Apple iTunes before 12.5.1 and is prone to a privilege escalation vulnerability. A flaw is present in the application, which fails to properly handle non-HTTP services. Successful exploitation allows attackers to access non-HTTP services. oval:org.secpod.oval:def:37230 The host is installed with Apple iTunes before 12.5.1 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to handle crafted web content. Successful exploitation allows attackers to execute arbitrary code. oval:org.secpod.oval:def:37238 The host is installed with Apple iTunes before 12.5.1 and is prone to an arbitrary code execution vulnerability. A flaw is present in the application, which fails to properly parse error prototypes. Successful exploitation allows attackers to process malicious crafted web content which leads to arbi ... oval:org.secpod.oval:def:37236 The host is installed with Apple iTunes before 12.5.1 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to handle crafted web content. Successful exploitation allows attackers to execute arbitrary code. oval:org.secpod.oval:def:37235 The host is installed with Apple iTunes before 12.5.1 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to handle crafted web content. Successful exploitation allows attackers to execute arbitrary code. oval:org.secpod.oval:def:37233 The host is installed with Apple iTunes before 12.5.1 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to handle crafted web content. Successful exploitation allows attackers to execute arbitrary code. oval:org.secpod.oval:def:37232 The host is installed with Apple iTunes before 12.5.1 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to handle crafted web content. Successful exploitation allows attackers to execute arbitrary code. oval:org.secpod.oval:def:37228 The host is installed with Apple iTunes before 12.5.1 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to handle crafted web content. Successful exploitation allows attackers to execute arbitrary code. oval:org.secpod.oval:def:37227 The host is missing a critical security update according to Apple advisory, APPLE-SA-2016-09-20-7. The update is required to fix multiple vulnerabilities. The flaws are present in the application, which fails to properly handle crafted data. Successful exploitation could allow attackers to execute a ... oval:org.secpod.oval:def:37857 The host is installed with Apple iTunes before 12.5.2 and is prone to a multiple memory corruption vulnerabilities. The flaws are present in the application, which fails to properly handle memory. Successful exploitation allows attackers to crash the service. oval:org.secpod.oval:def:37856 The host is installed with Apple iTunes before 12.5.2 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle memory. Successful exploitation allows attackers to crash the service. oval:org.secpod.oval:def:37855 The host is installed with Apple iTunes before 12.5.2 and is prone to an information disclosure vulnerability. A flaw is present in the application, which fails to handle crafted web content. Successful exploitation allows attackers to disclose sensitive information. oval:org.secpod.oval:def:44801 The host is installed with Apple iCloud before 7.4, Apple iTunes before 12.7.4 or Google Chrome before 68.0.3440.75 and is prone to a cross-origin information disclosure vulnerability. A flaw is present in the application, which fails to properly perform input validation. Successful exploitation cou ... oval:org.secpod.oval:def:44803 The host is missing a security update according to Apple advisory, APPLE-SA-2018-3-29-7. The update is required to fix multiple vulnerabilities. The flaws are present in the application, which fails to properly perform input validation. Successful exploitation could allow attackers to disclose sensi ... oval:org.secpod.oval:def:44800 The host is installed with Apple iCloud before 7.4 or Apple iTunes before 12.7.4 and is prone to a denial of service vulnerability. A flaw is present in the application, which fails to properly perform input validation. Successful exploitation could allow attackers to crash the service. oval:org.secpod.oval:def:44783 The host is installed with Apple iCloud before 7.4 or Apple iTunes before 12.7.4 and is prone to multiple memory corruption vulnerabilities. The flaws are present in the application, which fails to properly handle crafted data. Successful exploitation could allow attackers to execute arbitrary code. oval:org.secpod.oval:def:44784 The host is installed with Apple iCloud before 7.4 or Apple iTunes before 12.7.4 and is prone to multiple memory corruption vulnerabilities. The flaws are present in the application, which fails to properly handle crafted data. Successful exploitation could allow attackers to execute arbitrary code. oval:org.secpod.oval:def:44785 The host is installed with Apple iCloud before 7.4 or Apple iTunes before 12.7.4 and is prone to multiple memory corruption vulnerabilities. The flaws are present in the application, which fails to properly handle crafted data. Successful exploitation could allow attackers to execute arbitrary code. oval:org.secpod.oval:def:44786 The host is installed with Apple iCloud before 7.4 or Apple iTunes before 12.7.4 and is prone to multiple memory corruption vulnerabilities. The flaws are present in the application, which fails to properly handle crafted data. Successful exploitation could allow attackers to execute arbitrary code. oval:org.secpod.oval:def:44787 The host is installed with Apple iCloud before 7.4 or Apple iTunes before 12.7.4 and is prone to multiple memory corruption vulnerabilities. The flaws are present in the application, which fails to properly handle crafted data. Successful exploitation could allow attackers to execute arbitrary code. oval:org.secpod.oval:def:44789 The host is installed with Apple iCloud before 7.4 or Apple iTunes before 12.7.4 and is prone to multiple memory corruption vulnerabilities. The flaws are present in the application, which fails to properly handle crafted data. Successful exploitation could allow attackers to execute arbitrary code. oval:org.secpod.oval:def:44793 The host is installed with Apple iCloud before 7.4 or Apple iTunes before 12.7.4 and is prone to multiple memory corruption vulnerabilities. The flaws are present in the application, which fails to properly handle crafted data. Successful exploitation could allow attackers to execute arbitrary code. oval:org.secpod.oval:def:45882 The host is installed with Apple iCloud before 7.5 or Apple iTunes before 12.7.5 and is prone to a privilege escalation vulnerability. A flaw is present in the application, which fails to properly handle web browser cookies. Successful exploitation could allow attackers to overwrite cookies. oval:org.secpod.oval:def:44795 The host is installed with Apple iCloud before 7.4 or Apple iTunes before 12.7.4 and is prone to multiple memory corruption vulnerabilities. The flaws are present in the application, which fails to properly handle crafted data. Successful exploitation could allow attackers to execute arbitrary code. oval:org.secpod.oval:def:44796 The host is installed with Apple iCloud before 7.4 or Apple iTunes before 12.7.4 and is prone to multiple memory corruption vulnerabilities. The flaws are present in the application, which fails to properly handle crafted data. Successful exploitation could allow attackers to execute arbitrary code. oval:org.secpod.oval:def:44790 The host is installed with Apple iCloud before 7.4 or Apple iTunes before 12.7.4 and is prone to multiple memory corruption vulnerabilities. The flaws are present in the application, which fails to properly handle crafted data. Successful exploitation could allow attackers to execute arbitrary code. oval:org.secpod.oval:def:44791 The host is installed with Apple iCloud before 7.4 or Apple iTunes before 12.7.4 and is prone to multiple memory corruption vulnerabilities. The flaws are present in the application, which fails to properly handle crafted data. Successful exploitation could allow attackers to execute arbitrary code. oval:org.secpod.oval:def:44792 The host is installed with Apple iCloud before 7.4 or Apple iTunes before 12.7.4 and is prone to multiple memory corruption vulnerabilities. The flaws are present in the application, which fails to properly handle crafted data. Successful exploitation could allow attackers to execute arbitrary code. oval:org.secpod.oval:def:44797 The host is installed with Apple iCloud before 7.4 or Apple iTunes before 12.7.4 and is prone to multiple memory corruption vulnerabilities. The flaws are present in the application, which fails to properly handle crafted data. Successful exploitation could allow attackers to execute arbitrary code. oval:org.secpod.oval:def:44798 The host is installed with Apple iCloud before 7.4 or Apple iTunes before 12.7.4 and is prone to multiple memory corruption vulnerabilities. The flaws are present in the application, which fails to properly handle crafted data. Successful exploitation could allow attackers to execute arbitrary code. oval:org.secpod.oval:def:45887 The host is installed with Apple iCloud before 7.5 or Apple iTunes before 12.7.5 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle memory. Successful exploitation could allow attackers to execute arbitrary code. oval:org.secpod.oval:def:44799 The host is installed with Apple iCloud before 7.4 or Apple iTunes before 12.7.4 and is prone to a denial of service vulnerability. A flaw is present in the application, which fails to properly handle a function in javascript core. Successful exploitation could allow attackers to cause an ASSERT fai ... oval:org.secpod.oval:def:45893 The host is installed with Apple iCloud before 7.5 or Apple iTunes before 12.7.5 and is prone to an information disclosure vulnerability. A flaw is present in the application, which fails to properly handle CSS mask images. Successful exploitation could allow attackers to leak sensitive data. oval:org.secpod.oval:def:45894 The host is installed with Apple iCloud before 7.5 or Apple iTunes before 12.7.5 and is prone to an out-of-bounds read vulnerability. A flaw is present in the application, which fails to properly handle CSS mask images. Successful exploitation could allow attackers to execute arbitrary code. oval:org.secpod.oval:def:45890 The host is installed with Apple iCloud before 7.5 or Apple iTunes before 12.7.5 and is prone to an arbitrary code execution vulnerability. A flaw is present in the application, which fails to properly handle maliciously crafted web content. Successful exploitation could allow attackers to execute a ... oval:org.secpod.oval:def:45891 The host is installed with Apple iCloud before 7.5 or Apple iTunes before 12.7.5 and is prone to an arbitrary code execution vulnerability. A flaw is present in the application, which fails to properly handle maliciously crafted web content. Successful exploitation could allow attackers to execute a ... oval:org.secpod.oval:def:45892 The host is installed with Apple iCloud before 7.5 or Apple iTunes before 12.7.5 and is prone to a buffer overflow vulnerability. A flaw is present in the application, which fails to properly handle maliciously crafted web content. Successful exploitation could allow attackers to execute arbitrary c ... oval:org.secpod.oval:def:46289 The host is installed with Apple iCloud before 7.6 or Apple iTunes before 12.8 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle maliciously crafted content. Successful exploitation could allow attackers to crash the service. oval:org.secpod.oval:def:46293 The host is installed with Apple iCloud before 7.6 or Apple iTunes before 12.8 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle crafted content. Successful exploitation could allow attackers to crash the service. oval:org.secpod.oval:def:46292 The host is installed with Apple iCloud before 7.6 or Apple iTunes before 12.8 and is prone to a race condition vulnerability. A flaw is present in the application, which fails to properly handle crafted content. Successful exploitation could allow attackers to crash the service. oval:org.secpod.oval:def:46295 The host is installed with Apple iCloud before 7.6 or Apple iTunes before 12.8 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle crafted content. Successful exploitation could allow attackers to crash the service. oval:org.secpod.oval:def:46294 The host is installed with Apple iCloud before 7.6 or Apple iTunes before 12.8 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle crafted content. Successful exploitation could allow attackers to crash the service. oval:org.secpod.oval:def:46291 The host is installed with Apple iCloud before 7.6 or Apple iTunes before 12.8 and is prone to a type confusion vulnerability. A flaw is present in the application, which fails to properly handle crafted content. Successful exploitation could allow attackers to execute arbitrary code. oval:org.secpod.oval:def:46290 The host is installed with Apple iCloud before 7.6 or Apple iTunes before 12.8 and is prone to a cross-origin data bypass vulnerability. A flaw is present in the application, which fails to properly perform audio taint tracking. Successful exploitation could allow attackers to exfiltrate audio data ... oval:org.secpod.oval:def:46297 The host is installed with Apple iCloud before 7.6 or Apple iTunes before 12.8 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle crafted content. Successful exploitation could allow attackers to crash the service. oval:org.secpod.oval:def:46296 The host is installed with Apple iCloud before 7.6 or Apple iTunes before 12.8 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle crafted content. Successful exploitation could allow attackers to crash the service. oval:org.secpod.oval:def:46299 The host is installed with Apple iCloud before 7.6 or Apple iTunes before 12.8 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle crafted content. Successful exploitation could allow attackers to crash the service. oval:org.secpod.oval:def:46298 The host is installed with Apple iCloud before 7.6 or Apple iTunes before 12.8 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle crafted content. Successful exploitation could allow attackers to crash the service. oval:org.secpod.oval:def:46301 The host is installed with Apple iCloud before 7.6 or Apple iTunes before 12.8 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle crafted content. Successful exploitation could allow attackers to crash the service. oval:org.secpod.oval:def:46303 The host is missing a security update according to Apple advisory, APPLE-SA-2018-7-9-7. The update is required to fix multiple vulnerabilities. The flaws are present in the application, which fails to properly handle crafted data. Successful exploitation could allow attackers to execute arbitrary co ... oval:org.secpod.oval:def:45886 The host is installed with Apple iCloud before 7.5 or Apple iTunes before 12.7.5 and is prone to a type confusion vulnerability. A flaw is present in the application, which fails to properly handle memory. Successful exploitation could allow attackers to execute arbitrary code. oval:org.secpod.oval:def:48571 The host is installed with Apple iTunes before 12.9.1 or Apple iCloud before 7.8 and is prone to an unspecified vulnerability. A flaw is present in the application, which fail to properly handle a weakness in the Miller-Rabin primality test. Successful exploitation could allow attackers to exploit a ... oval:org.secpod.oval:def:48572 The host is installed with Apple iTunes before 12.9.1 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fail to properly handle a crafted string. Successful exploitation could allow attackers to corrupt heap. oval:org.secpod.oval:def:48585 The host is missing a security update according to Apple advisory, APPLE-SA-2018-10-30-6. The update is required to fix multiple vulnerabilities. The flaws are present in the application, which fail to properly handle input validation. Successful exploitation could allow attackers to execute arbitra ... oval:org.secpod.oval:def:47625 The host is missing a security update according to Apple advisory, APPLE-SA-2018-9-24-2. The update is required to fix multiple vulnerabilities. The flaws are present in the application, which fails to properly handle crafted data. Successful exploitation could allow attackers to execute arbitrary c ... oval:org.secpod.oval:def:38370 The host is installed with Apple iTunes before 12.5.4 and is prone to an information disclosure vulnerability. A flaw is present in the application, which fails to properly handle HTTP redirects. Successful exploitation could lead to disclosure of user information. oval:org.secpod.oval:def:38371 The host is installed with Apple iTunes before 12.5.4 and is prone to an information disclosure vulnerability. A flaw is present in the application, which fails to properly handle HTTP redirects. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:38372 The host is installed with Apple iTunes before 12.5.4 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle crafted data. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:38373 The host is installed with Apple iTunes before 12.5.4 and is prone to a multiple memory corruption vulnerabilities. The flaws are present in the application, which fails to properly handle crafted data. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:38367 The host is installed with Apple iTunes before 12.5.4 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle maliciously crafted web content. Successful exploitation could allow attackers to execute arbitrary code. oval:org.secpod.oval:def:38368 The host is installed with Apple iTunes before 12.5.4 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle maliciously crafted web content. Successful exploitation could allow attackers to execute arbitrary code. oval:org.secpod.oval:def:38369 The host is installed with Apple iTunes before 12.5.4 and is prone to an information disclosure vulnerability. A flaw is present in the application, which fails to properly handle of JavaScript prompts. Successful exploitation could lead to disclosure of user information. oval:org.secpod.oval:def:38361 The host is installed with Apple iTunes before 12.5.4 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle maliciously crafted web content. Successful exploitation could allow attackers to execute arbitrary code. oval:org.secpod.oval:def:38363 The host is installed with Apple iTunes before 12.5.4 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle maliciously crafted web content. Successful exploitation could allow attackers to execute arbitrary code. oval:org.secpod.oval:def:38354 The host is installed with Apple iTunes before 12.5.4 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle maliciously crafted web content. Successful exploitation could lead to disclosure of process memory. oval:org.secpod.oval:def:38355 The host is installed with Apple iTunes before 12.5.4 and is prone to an information disclosure vulnerability. A flaw is present in the application, which fails to properly handle maliciously crafted web content. Successful exploitation could lead to disclosure of user information. oval:org.secpod.oval:def:38356 The host is installed with Apple iTunes before 12.5.4 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle maliciously crafted web content. Successful exploitation could lead to execute arbitrary code. oval:org.secpod.oval:def:38357 The host is installed with Apple iTunes before 12.5.4 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle maliciously crafted web content. Successful exploitation could lead to disclosure of user information. oval:org.secpod.oval:def:38359 The host is installed with Apple iTunes before 12.5.4 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle maliciously crafted web content. Successful exploitation could allow attackers to execute arbitrary code. oval:org.secpod.oval:def:38350 The host is installed with Apple iTunes before 12.5.4 and is prone to an arbitrary code execution vulnerability. A flaw is present in the application, which fails to handle memory. Successful exploitation allows attackers to execute arbitrary code. oval:org.secpod.oval:def:38351 The host is installed with Apple iTunes before 12.5.4 and is prone to an arbitrary code execution vulnerability. A flaw is present in the application, which fails to handle memory. Successful exploitation allows attackers to execute arbitrary code. oval:org.secpod.oval:def:38352 The host is installed with Apple iTunes before 12.5.4 and is prone to an arbitrary code execution vulnerability. A flaw is present in the application, which fails to handle memory. Successful exploitation allows attackers to execute arbitrary code. oval:org.secpod.oval:def:38353 The host is installed with Apple iTunes before 12.5.4 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to handle properly handle maliciously crafted web content. Successful exploitation could lead to disclosure of process memory. oval:org.secpod.oval:def:43585 The host is installed with Apple iCloud before 7.3 or Apple iTunes before 12.7.3 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle maliciously crafted web content. Successful exploitation could allow attackers to execute arbitrary ... oval:org.secpod.oval:def:43584 The host is installed with Apple iCloud before 7.3 or Apple iTunes before 12.7.3 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle maliciously crafted web content. Successful exploitation could allow attackers to execute arbitrary ... oval:org.secpod.oval:def:43587 The host is missing a security update according to apple advisory, APPLE-SA-2018-1-23-6. The update is required to fix multiple memory corruption vulnerabilities.The flaws are present in the application, which fails to properly handle maliciously crafted web content. Successful exploitation could al ... oval:org.secpod.oval:def:41411 The host is installed with Apple iTunes before 12.6.2 or Apple iCloud before 6.2.2 and is prone to multiple memory corruption vulnerabilities. The flaws are present in the applications, which fail to properly handle crafted data. Successful exploitation could allow attackers to execute arbitrary cod ... oval:org.secpod.oval:def:41412 The host is installed with Apple iTunes before 12.6.2 or Apple iCloud before 6.2.2 and is prone to multiple memory corruption vulnerabilities. The flaws are present in the applications, which fail to properly handle crafted data. Successful exploitation could allow attackers to execute arbitrary cod ... oval:org.secpod.oval:def:41410 The host is installed with Apple iTunes before 12.6.2 or Apple iCloud before 6.2.2 and is prone to multiple memory corruption vulnerabilities. The flaws are present in the applications, which fail to properly handle crafted data. Successful exploitation could allow attackers to execute arbitrary cod ... oval:org.secpod.oval:def:41415 The host is installed with Apple iTunes before 12.6.2 or Apple iCloud before 6.2.2 and is prone to multiple memory corruption vulnerabilities. The flaws are present in the applications, which fail to properly handle crafted data. Successful exploitation could allow attackers to execute arbitrary cod ... oval:org.secpod.oval:def:41416 The host is installed with Apple iTunes before 12.6.2 or Apple iCloud before 6.2.2 and is prone to multiple memory corruption vulnerabilities. The flaws are present in the applications, which fail to properly handle crafted data. Successful exploitation could allow attackers to execute arbitrary cod ... oval:org.secpod.oval:def:41413 The host is installed with Apple iTunes before 12.6.2 or Apple iCloud before 6.2.2 and is prone to multiple memory corruption vulnerabilities. The flaws are present in the applications, which fail to properly handle crafted data. Successful exploitation could allow attackers to execute arbitrary cod ... oval:org.secpod.oval:def:41414 The host is installed with Apple iTunes before 12.6.2 or Apple iCloud before 6.2.2 and is prone to multiple memory corruption vulnerabilities. The flaws are present in the applications, which fail to properly handle crafted data. Successful exploitation could allow attackers to execute arbitrary cod ... oval:org.secpod.oval:def:41419 The host is installed with Apple iTunes before 12.6.2 or Apple iCloud before 6.2.2 and is prone to multiple memory corruption vulnerabilities. The flaws are present in the applications, which fail to properly handle crafted data. Successful exploitation could allow attackers to execute arbitrary cod ... oval:org.secpod.oval:def:41417 The host is installed with Apple iTunes before 12.6.2 or Apple iCloud before 6.2.2 and is prone to multiple memory corruption vulnerabilities. The flaws are present in the applications, which fail to properly handle crafted data. Successful exploitation could allow attackers to execute arbitrary cod ... oval:org.secpod.oval:def:41418 The host is installed with Apple iTunes before 12.6.2 or Apple iCloud before 6.2.2 and is prone to multiple memory corruption vulnerabilities. The flaws are present in the applications, which fail to properly handle crafted data. Successful exploitation could allow attackers to execute arbitrary cod ... oval:org.secpod.oval:def:41422 The host is installed with Apple iTunes before 12.6.2 or Apple iCloud before 6.2.2 and is prone to multiple memory corruption vulnerabilities. The flaws are present in the applications, which fail to properly handle crafted data. Successful exploitation could allow attackers to execute arbitrary cod ... oval:org.secpod.oval:def:41423 The host is installed with Apple iTunes before 12.6.2 or Apple iCloud before 6.2.2 and is prone to multiple memory corruption vulnerabilities. The flaws are present in the applications, which fail to properly handle crafted data. Successful exploitation could allow attackers to execute arbitrary cod ... oval:org.secpod.oval:def:41420 The host is installed with Apple iTunes before 12.6.2 or Apple iCloud before 6.2.2 and is prone to multiple memory corruption vulnerabilities. The flaws are present in the applications, which fail to properly handle crafted data. Successful exploitation could allow attackers to execute arbitrary cod ... oval:org.secpod.oval:def:41421 The host is installed with Apple iTunes before 12.6.2 or Apple iCloud before 6.2.2 and is prone to multiple memory corruption vulnerabilities. The flaws are present in the applications, which fail to properly handle crafted data. Successful exploitation could allow attackers to execute arbitrary cod ... oval:org.secpod.oval:def:41427 The host is missing a security update according to Apple advisory, APPLE-SA-2017-07-19-6. The update is required to fix multiple memory corruption vulnerabilities. The flaws are present in the application, which fails to properly handle crafted data. Successful exploitation could allow attackers to ... oval:org.secpod.oval:def:41424 The host is installed with Apple iTunes before 12.6.2 or Apple iCloud before 6.2.2 and is prone to multiple memory corruption vulnerabilities. The flaws are present in the applications, which fail to properly handle crafted data. Successful exploitation could allow attackers to execute arbitrary cod ... oval:org.secpod.oval:def:41425 The host is installed with Apple iTunes before 12.6.2 or Apple iCloud before 6.2.2 and is prone to memory initialization vulnerability. A flaw is present in the applications, which fail to properly handle crafted data. Successful exploitation could allow attackers to execute arbitrary code. oval:org.secpod.oval:def:41405 The host is installed with Apple iTunes before 12.6.2 or Apple iCloud before 6.2.2 and is prone to multiple memory corruption vulnerabilities. The flaws are present in the applications, which fail to properly handle crafted web content. Successful exploitation could allow attackers to execute arbitr ... oval:org.secpod.oval:def:41408 The host is installed with Apple iTunes before 12.6.2 or Apple iCloud before 6.2.2 and is prone to multiple memory corruption vulnerabilities. The flaws are present in the applications, which fail to properly handle crafted data. Successful exploitation could allow attackers to execute arbitrary cod ... oval:org.secpod.oval:def:41409 The host is installed with Apple iTunes before 12.6.2 or Apple iCloud before 6.2.2 and is prone to multiple memory corruption vulnerabilities. The flaws are present in the applications, which fail to properly handle crafted data. Successful exploitation could allow attackers to execute arbitrary cod ... oval:org.secpod.oval:def:41407 The host is installed with Apple iTunes before 12.6.2 or Apple iCloud before 6.2.2 and is prone to multiple memory corruption vulnerabilities. The flaws are present in the applications, which fail to properly handle crafted data. Successful exploitation could allow attackers to execute arbitrary cod ... oval:org.secpod.oval:def:42163 The host is installed with Apple iCloud before 7.0 or iTunes before 12.7 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle maliciously crafted web content. Successful exploitation could allow attackers to execute arbitrary code. oval:org.secpod.oval:def:42167 The host is installed with Apple iCloud before 7.0 or iTunes before 12.7 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle maliciously crafted web content. Successful exploitation could allow attackers to execute arbitrary code. oval:org.secpod.oval:def:42166 The host is installed with Apple iCloud before 7.0 or iTunes before 12.7 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle maliciously crafted web content. Successful exploitation could allow attackers to execute arbitrary code. oval:org.secpod.oval:def:42165 The host is installed with Apple iCloud before 7.0 or iTunes before 12.7 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle maliciously crafted web content. Successful exploitation could allow attackers to execute arbitrary code. oval:org.secpod.oval:def:42164 The host is installed with Apple iCloud before 7.0 or iTunes before 12.7 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle maliciously crafted web content. Successful exploitation could allow attackers to execute arbitrary code. oval:org.secpod.oval:def:42169 The host is installed with Apple iCloud before 7.0 or iTunes before 12.7 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle maliciously crafted web content. Successful exploitation could allow attackers to execute arbitrary code. oval:org.secpod.oval:def:42168 The host is installed with Apple iCloud before 7.0 or iTunes before 12.7 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle maliciously crafted web content. Successful exploitation could allow attackers to execute arbitrary code. oval:org.secpod.oval:def:42170 The host is installed with Apple iCloud before 7.0 or iTunes before 12.7 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle maliciously crafted web content. Successful exploitation could allow attackers to execute arbitrary code. oval:org.secpod.oval:def:42174 The host is installed with Apple iCloud before 7.0 or iTunes before 12.7 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle maliciously crafted web content. Successful exploitation could allow attackers to execute arbitrary code. oval:org.secpod.oval:def:42173 The host is installed with Apple iCloud before 7.0 or iTunes before 12.7 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle maliciously crafted web content. Successful exploitation could allow attackers to execute arbitrary code. oval:org.secpod.oval:def:42172 The host is installed with Apple iCloud before 7.0 or iTunes before 12.7 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle maliciously crafted web content. Successful exploitation could allow attackers to execute arbitrary code. oval:org.secpod.oval:def:42171 The host is installed with Apple iCloud before 7.0 or iTunes before 12.7 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle maliciously crafted web content. Successful exploitation could allow attackers to execute arbitrary code. oval:org.secpod.oval:def:42178 The host is installed with Apple iCloud before 7.0 or iTunes before 12.7 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle maliciously crafted web content. Successful exploitation could allow attackers to execute arbitrary code. oval:org.secpod.oval:def:42177 The host is installed with Apple iCloud before 7.0 or iTunes before 12.7 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle maliciously crafted web content. Successful exploitation could allow attackers to execute arbitrary code. oval:org.secpod.oval:def:42176 The host is installed with Apple iCloud before 7.0 or iTunes before 12.7 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle maliciously crafted web content. Successful exploitation could allow attackers to execute arbitrary code. oval:org.secpod.oval:def:42175 The host is installed with Apple iCloud before 7.0 or iTunes before 12.7 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle maliciously crafted web content. Successful exploitation could allow attackers to execute arbitrary code. oval:org.secpod.oval:def:42179 The host is installed with Apple iCloud before 7.0 or iTunes before 12.7 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle maliciously crafted web content. Successful exploitation could allow attackers to execute arbitrary code. oval:org.secpod.oval:def:42181 The host is installed with Apple iCloud before 7.0 or iTunes before 12.7 and is prone to an unspecified vulnerability. A flaw is present in the application, which fails to properly handle web browser cookies. Successful exploitation could allow cookies belonging to one origin may be sent to another ... oval:org.secpod.oval:def:42185 The host is missing a security update according to Apple advisory, APPLE-SA-2017-09-25-8. The update is required to fix multiple vulnerabilities. The flaws are present in the application, which fails to properly handle crafted data. Successful exploitation could allow attackers to execute arbitrary ... oval:org.secpod.oval:def:42183 The host is installed with Apple iCloud before 7.0 or iTunes before 12.7 and is prone to a cross site script vulnerability. A flaw is present in the application, which fails to properly handle malicious website. Successful exploitation may lead to a cross site scripting attack. oval:org.secpod.oval:def:43209 The host is installed with Apple iCloud before 7.2 or Apple iTunes before 12.7.2 and is prone to an arbitrary code execution vulnerability. A flaw is present in the application, which fails to properly handle maliciously crafted web content. Successful exploitation could allow attackers to cause an ... oval:org.secpod.oval:def:43208 The host is installed with Apple iCloud before 7.2 or Apple iTunes before 12.7.2 and is prone to an arbitrary code execution vulnerability. A flaw is present in the application, which fails to properly handle maliciously crafted web content. Successful exploitation could allow attackers to cause an ... oval:org.secpod.oval:def:43207 The host is installed with Apple iCloud before 7.2 or Apple iTunes before 12.7.2 and is prone to an arbitrary code execution vulnerability. A flaw is present in the application, which fails to properly handle maliciously crafted web content. Successful exploitation could allow attackers to cause an ... oval:org.secpod.oval:def:43211 The host is installed with Apple iCloud before 7.2 or Apple iTunes before 12.7.2 and is prone to an arbitrary code execution vulnerability. A flaw is present in the application, which fails to properly handle maliciously crafted web content. Successful exploitation could allow attackers to cause an ... oval:org.secpod.oval:def:43210 The host is installed with Apple iCloud before 7.2 or Apple iTunes before 12.7.2 and is prone to an arbitrary code execution vulnerability. A flaw is present in the application, which fails to properly handle maliciously crafted web content. Successful exploitation could allow attackers to cause an ... oval:org.secpod.oval:def:43213 The host is missing a security update according to apple advisory, APPLE-SA-2017-12-13-4. The update is required to fix multiple memory corruption vulnerabilities.The flaws are present in the application, which fails to properly handle maliciously crafted web content or client certificates. Successf ... oval:org.secpod.oval:def:38257 The host is installed with Apple iTunes before 12.4.2 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to handle crafted data. Successful exploitation allows attackers to crash the service. oval:org.secpod.oval:def:30655 The host is installed with Apple iTunes before 12.3.1 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted font file. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:30656 The host is missing a critical security update according to Apple advisory, APPLE-SA-2015-10-21-5. The update is required to fix multiple vulnerabilities. The flaws are present in the application, which fails to properly handle crafted data. Successful exploitation could allow attackers to execute a ... oval:org.secpod.oval:def:30653 The host is installed with Apple iTunes before 12.3.1 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted font file. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:30654 The host is installed with Apple iTunes before 12.3.1 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted font file. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:2936 The host is missing an APPLE-SA-2011-03-02-1 iTunes 10.2 update according to Apple Product Security. The update is required to fix denial of service vulnerability in Apple iTunes. The flaws are present in WebKit, ImageIO and libxml which fails to handle vectors related to iTunes Store browsing, craf ... oval:org.secpod.oval:def:14279 The host is installed with Apple iTunes before 10.2 or Apple Safari before 5.0.4 and is prone to memory leak vulnerability. The flaw is present in the application, which fails to handle a PNG image containing malformed Physical Scale (aka sCAL) chunks. Successful exploitation allows remote attackers ... oval:org.secpod.oval:def:57654 The host is installed with Apple iTunes before 12.9.6, Apple iCloud before 7.13 or Oracle Java SE through 8u231 and is prone to a stack overflow vulnerability. A flaw is present in the applications, which fail to properly handle an input validation issue. Successful exploitation could allow attacker ... oval:org.mitre.oval:def:11851 The host is installed with Apple iTunes before 10.2, Mozilla Firefox 3.5.x before 3.5.11 and 3.6.x before 3.6.7, Mozilla SeaMonkey 2.x before 2.0.6 or Mozilla Thunderbird 3.1.x before 3.1.1 and 3.0.x before 3.0.6 or Apple Safari before 5.0.4 and is prone to buffer overflow vulnerability. The flaw is ... oval:org.secpod.oval:def:2688 The host is installed with Mozilla Firefox before 7.0, Thunderbird before 7.0 or SeaMonkey before 2.4, Apple Safari before 5.1.1 or Apple iTunes before 10.5 and is prone to a denial of service vulnerability. A flaw is present in the applications, which fails to handle a crafted javascript code. Succ ... oval:org.secpod.oval:def:62208 The host is missing a security update according to Apple advisory, APPLE-SA-2020-03-24-6. The update is required to fix multiple vulnerabilities. The flaws are present in the application, which fails to handle a malicious web content. Successful exploitation could allow attackers to execute arbitrar ... oval:org.secpod.oval:def:62212 The host is installed with Apple iTunes before 12.10.5 or iCloud before 7.18 and is prone to a buffer overflow vulnerability. A flaw is present in the applications, which fail to properly handle a bounds-checking issue. Successful exploitation could allow attackers to cause unspecified impact. oval:org.secpod.oval:def:62211 The host is installed with Apple iTunes before 12.10.5 or iCloud before 7.18 and is prone to a buffer overflow vulnerability. A flaw is present in the applications, which fail to properly handle a bounds-checking issue. Successful exploitation could allow attackers to cause unspecified impact. oval:org.secpod.oval:def:62210 The host is installed with Apple iTunes before 12.10.5 or iCloud before 7.18 and is prone to a buffer overflow vulnerability. A flaw is present in the applications, which fail to properly handle a size validation issue. Successful exploitation could allow attackers to cause unspecified impact. oval:org.secpod.oval:def:75049 The host is missing a security update according to Apple advisory, APPLE-SA-2021-09-20-10. The update is required to fix multiple vulnerabilities. The flaws are present in the application, which fails to handle multiple vectors. Successful exploitation could allows attackers to cause arbitrary code ... oval:org.secpod.oval:def:75052 The host is installed with Apple iTunes before 12.12 and is prone to a multiple memory corruption vulnerabilities. A flaw is present in the application, which fails to properly handle issues in memory handling. Successful exploitation allows attackers to cause arbitrary code execution while processi ... oval:org.secpod.oval:def:75050 The host is installed with Apple iTunes before 12.12 and is prone to an arbitrary code execution vulnerability. A flaw is present in the application, which fails to properly handle improper checks. Successful exploitation allows attackers to cause arbitrary code execution while processing a maliciou ... oval:org.secpod.oval:def:75051 The host is installed with Apple iTunes before 12.12 and is prone to an arbitrary code execution vulnerability. A flaw is present in the application, which fails to properly handle improper checks. Successful exploitation allows attackers to cause arbitrary code execution while processing a maliciou ... |
