| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-ID: <20060316190208.468EA4DD9@lists.grok.org.uk> Date: Thu Mar 16 19:51:49 2006 From: peak at argo.troja.mff.cuni.cz (peak@...o.troja.mff.cuni.cz) Subject: [Advisory] $ x Thu Mar 16 14:02:04 EST 2006 x $ Buffer Overflow in Apple iTunes [Advisory] $ x Thu Mar 16 14:02:04 EST 2006 x $ Buffer Overflow in Apple iTunes ------------------------------------------------------ 8===D DESCRIPTION ------------------------------------------------------ It is possible to make Apple iTunes crash or run arbitrary code by the use of malformed input. ------------------------------------------------------ 8===D VENDOR RESPONSE ------------------------------------------------------ Apple iTunes has extended no information regarding the vulnerability in question. ------------------------------------------------------ 8===D CVE INFORMATION ------------------------------------------------------ The Common Vulnerabilities and Exposures (CVE) project has assigned the name CVE-2006-105072 to this issue ------------------------------------------------------ APPENDIX A VENDOR INFORMATION ------------------------------------------------------ http://www.apple.com/itunes/ ------------------------------------------------------ CONTACT ------------------------------------------------------ Pavel Kankovsky peak@...o.troja.mff.cuni.cz CISSP CCE CEH CSFA GREM SSP-CNSA SSP-MPA GWAS CAP SSCP
Powered by blists - more mailing lists