http://secunia.com/advisories/36744/
DESCRIPTION:
A vulnerability has been reported in Apple iTunes, which can be exploited by malicious people to compromise a user's system.
The vulnerability is caused due to a boundary error in the processing of ".pls" files and can be exploited to cause a buffer overflow.
Successful exploitation may allow execution of arbitrary code.
The vulnerability is reported in version 9 for Windows and Mac.
SOLUTION:
Update to version 9.0.1.
PROVIDED AND/OR DISCOVERED BY:
The vendor credits Steven Woolley at Oogli LLC.
Original Advisory:
http://support.apple.com/kb/HT3884
CVE reference:
CVE-2009-2817
No comments:
Post a Comment