Multiple vulnerabilities in Apple iTunes - APPLE-SA-2014-01-22-1 (Mac OS X)ID: oval:org.secpod.oval:def:16645 | Date: (C)2014-01-29 (M)2023-11-18 |
Class: PATCH | Family: macos |
The host is missing a security update according to Apple advisory, APPLE-SA-2014-01-22-1. The update is required to fix multiple vulnerabilities. The flaws are present in the application, which fails to properly handle the contents of the iTunes Tutorials window. Successful exploitation allows attackers to gain control and inject arbitrary contents.
Platform: |
Apple Mac OS X 10.8 |
Apple Mac OS X 10.9 |
Apple Mac OS X 10.10 |
Apple Mac OS X Server 10.8 |
Apple Mac OS X Server 10.9 |
Apple Mac OS X Server 10.10 |