[Forgot Password]
Login  Register Subscribe

24128

 
 

131573

 
 

111017

 
 

909

 
 

86402

 
 

136

Paid content will be excluded from the download.


Download | Alert*
OVAL

Security bypass vulnerability in Apple iTunes - APPLE-SA-2014-05-16-1 (Mac OS X)

ID: oval:org.secpod.oval:def:20049Date: (C)2014-07-01   (M)2018-03-24
Class: PATCHFamily: macos




The host is missing an important security update according to Apple security advisory, APPLE-SA-2014-05-16-1. The update is required to fix security bypass vulnerability. The flaw is present in the application, which fail to handle standard filesystem operations. Successful exploitation could allow attackers to modify files and consequently obtain access to arbitrary user accounts.

Platform:
Apple Mac OS X 10.8
Apple Mac OS X 10.9
Apple Mac OS X 10.10
Apple Mac OS X Server 10.8
Apple Mac OS X Server 10.9
Apple Mac OS X Server 10.10
Product:
Apple iTunes
Reference:
APPLE-SA-2014-05-16-1
CVE-2014-1347
CVE    1
CVE-2014-1347
CPE    14
cpe:/a:apple:itunes
cpe:/a:apple:itunes:11.0.1
cpe:/a:apple:itunes:11.1.5
cpe:/a:apple:itunes:11.0.5
...

© SecPod Technologies