cpe:/a:apple:itunes:6.0.4 CVE-2006-1467 2006-04-07T00:00:00.000-04:00 2006-06-29T19:05:00.000-04:00 2017-07-19T21:30:37.537-04:00 5.1 NETWORK HIGH NONE PARTIAL PARTIAL PARTIAL http://nvd.nist.gov 2006-07-03T09:34:00.000-04:00 ALLOWS_USER_ACCESS SECTRACK 1016413 BID 18730 BUGTRAQ 20060630 ZDI-06-020: Apple iTunes AAC File Parsing Integer Overflow Vulnerability SECUNIA 20891 VUPEN ADV-2006-2601 APPLE APPLE-SA-2006-06-29 CERT-VN VU#907836 MISC http://www.zerodayinitiative.com/advisories/ZDI-06-020.html XF itunes-aac-file-overflow(27481) Integer overflow in the AAC file parsing code in Apple iTunes before 6.0.5 on Mac OS X 10.2.8 or later, and Windows XP and 2000, allows remote user-assisted attackers to execute arbitrary code via an AAC (M4P, M4A, or M4B) file with a sample table size (STSZ) atom with a "malformed" sample_size_table value.