Computer Security
[EN] securityvulns.ru no-pyccku


Apple iTunes DoS
Published:19.02.2007
Source:
SecurityVulns ID:7263
Type:client
Threat Level:
4/10
Description:NULL pointer crash on xml parsing.
Affected:APPLE : iTunes 7.0
CVE:CVE-2007-1008 (Apple iTunes 7.0.2 allows user-assisted remote attackers to cause a denial of service (application crash) via a crafted XML list of radio stations, which results in memory corruption. NOTE: iTunes retrieves the XML document from a static URL, which requires an attacker to perform DNS spoofing or man-in-the-middle attacks for exploitation.)
Original documentdocumentpoplix_(at)_papuasia.org, iTunes remote memory corruption vulnerability (19.02.2007)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod