[Forgot Password]
Login  Register Subscribe

23631

 
 

115038

 
 

95906

 
 

909

 
 

77986

 
 

109

Paid content will be excluded from the download.


Download | Alert*
OVAL

Security bypass vulnerability in Apple iTunes - APPLE-SA-2014-05-16-1 (Mac OS X)

ID: oval:org.secpod.oval:def:20049Date: (C)2014-07-01   (M)2015-12-16
Class: PATCHFamily: macos




The host is missing an important security update according to Apple security advisory, APPLE-SA-2014-05-16-1. The update is required to fix security bypass vulnerability. The flaw is present in the application, which fail to handle standard filesystem operations. Successful exploitation could allow attackers to modify files and consequently obtain access to arbitrary user accounts.

Platform:
Apple Mac OS X 10.8
Apple Mac OS X 10.9
Apple Mac OS X 10.10
Apple Mac OS X Server 10.8
Apple Mac OS X Server 10.9
Apple Mac OS X Server 10.10
Product:
Apple iTunes
Reference:
APPLE-SA-2014-05-16-1
CVE-2014-1347
CVE    1
CVE-2014-1347
CPE    14
cpe:/a:apple:itunes:11.1.5
cpe:/a:apple:itunes:11.1.4
cpe:/a:apple:itunes:11.2
cpe:/a:apple:itunes:11.1.3
...

© 2013 SecPod Technologies