The host is installed with Apple iTunes before 12.12.3 and is prone to a cookie management vulnerability. A flaw is present in the applications, which fail to properly handle issues in state management. On successful exploitation, processing maliciously crafted web content may disclose sensitive user information.