Full Disclosure mailing list archives

-Advisory- $ -Thu Mar 16 13:40:19 EST 2006- $ Buffer Overflow in Apple iTunes

From: brian () dessent net
Date: Thu, 16 Mar 2006 18:40:27 +0000 (GMT)




-Advisory- $ -Thu Mar 16 13:40:19 EST 2006- $ Buffer Overflow in Apple iTunes




====
o/ å BACKGROUND
There is no background.
====
å \o DESCRIPTION
It is possible to make Apple iTunes crash or run arbitrary code by the use of malformed input.

====
o/ å VENDOR RESPONSE
Apple iTunes was presented no explanation regarding the vulnerability at hand.
====
å \o CVE INFORMATION
The Common Vulnerabilities and Exposures (CVE) project has assigned the name CVE-2006-553699 to this issue

====
APPENDIX A VENDOR INFORMATION
http://www.apple.com/itunes/


_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Current thread:

-Advisory- $ -Thu Mar 16 13:40:19 EST 2006- $ Buffer Overflow in Apple iTunes brian (Mar 16)