[Full-disclosure] [Advisory] $ x Thu Mar 16 14:02:04 EST 2006 x $ Buffer Overflow in Apple iTunes
- From: peak@xxxxxxxxxxxxxxxxxxxxxx
- Date: Thu, 16 Mar 2006 19:02:08 +0000 (GMT)
[Advisory] $ x Thu Mar 16 14:02:04 EST 2006 x $ Buffer Overflow in Apple iTunes
------------------------------------------------------
8===D DESCRIPTION
------------------------------------------------------
It is possible to make Apple iTunes crash or run arbitrary code by the use of malformed input.
------------------------------------------------------
8===D VENDOR RESPONSE
------------------------------------------------------
Apple iTunes has extended no information regarding the vulnerability in question.
------------------------------------------------------
8===D CVE INFORMATION
------------------------------------------------------
The Common Vulnerabilities and Exposures (CVE) project has assigned the name CVE-2006-105072 to this issue
------------------------------------------------------
APPENDIX A VENDOR INFORMATION
------------------------------------------------------
http://www.apple.com/itunes/
------------------------------------------------------
CONTACT
------------------------------------------------------
Pavel Kankovsky peak@xxxxxxxxxxxxxxxxxxxxxx
CISSP CCE CEH CSFA GREM SSP-CNSA SSP-MPA GWAS CAP SSCP
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
- Prev by Date: [Full-disclosure] ADVISORY - x Thu Mar 16 14:01:42 EST 2006 x - DoS Vulnerability in Snort
- Next by Date: [Full-disclosure] Re: Filtering Latest Spam Run (radio.toad.com)
- Previous by thread: [Full-disclosure] ADVISORY - x Thu Mar 16 14:01:42 EST 2006 x - DoS Vulnerability in Snort
- Next by thread: [Full-disclosure] ADVISORY $ x Thu Mar 16 14:02:47 EST 2006 x $ Integer Overflow in Microsoft Windows 2003
- Index(es):
Relevant Pages
|
