[PCWorks] Apple iTunes Multiple Vulnerabilities

• From: "Clint Hamilton-PCWorks Admin" <PCWorks@xxxxxxxxxxxxxxxxxxxxxxxx>
• To: "PCWorks@xxxxxxxxxxxxx" <pcworks@xxxxxxxxxxxxx>
• Date: Fri, 2 Apr 2010 22:27:56 -0500

TITLE:
Apple iTunes Multiple Vulnerabilities

Highly critical
Impact:  Exposure of sensitive information, Privilege escalation, DoS, 
System access
Where:  From remote

VERIFY ADVISORY:
http://secunia.com/advisories/39135/

DESCRIPTION:
Some vulnerabilities have been reported in Apple iTunes, which can be
exploited by malicious, local users to gain escalated privileges and
by malicious people to disclose sensitive information, cause a DoS
(Denial of Service), or compromise a user's system.

1) Multiple errors in the ColorSync and ImageIO components when
handling images can be exploited to disclose application memory or
potentially execute arbitrary code.

For more information see vulnerabilities #1 through #4 and #9 in:
SA38932

2) An error when processing MP4 files can be exploited to trigger the
execution of an infinite loop and render the application unusable
after its restart via e.g. a specially crafted podcast.

3) During installation iTunes for Windows installs and executes
certain files in a directory in the ""%ALLUSERSPROFILE%\Application
Data\" path. As standard permissions allows any user to write files
to the path, this can be exploited to either create malicious files
with specific names before installation or malicious libraries after
installation, allowing execution of arbitrary code with SYSTEM
privileges.

The vulnerabilities are reported in versions prior to 9.1.

SOLUTION:
Update to version 9.1.

ORIGINAL ADVISORY:
http://support.apple.com/kb/HT4105

OTHER REFERENCES:
SA38932:
http://secunia.com/advisories/38932/

=========================
The list's FAQ's can be seen by sending an email to 
PCWorks-request@xxxxxxxxxxxxx with FAQ in the subject line.

To unsubscribe, subscribe, set Digest or Vacation to on or off, go to 
//www.freelists.org/list/pcworks .  You can also send an email to 
PCWorks-request@xxxxxxxxxxxxx with Unsubscribe in the subject line.  Your 
member list settings can be found at 
//www.freelists.org/cgi-bin/lsg2.cgi/l=pcworks .  Once logged in, you have 
access to numerous other email options.  

The list archives are located at //www.freelists.org/archives/pcworks/ .  
All email posted to the list will be placed there in the event anyone needs to 
look for previous posts.
-zxdjhu-

Other related posts:

• » [PCWorks] Apple iTunes Multiple Vulnerabilities - Clint Hamilton-PCWorks Admin
• » [PCWorks] Apple iTunes Multiple Vulnerabilities- Clint Hamilton-PCWorks Admin
• » [PCWorks] Apple iTunes Multiple Vulnerabilities- Clint Hamilton-PCWorks Admin

1. Home
2. pcworks
3. Archive
4. 04-2010

---

• » Previous by Date
• » Next by Date
• » Related Posts
• » View list details
• » Manage your subscription

---