Full Disclosure mailing list archives

ADVISORY % x Thu Mar 16 13:43:13 EST 2006 x % Local Privilege Escalation Vulnerability in Apple iTunes

From: wh1t3h4t3 () yahoo co uk
Date: Thu, 16 Mar 2006 18:43:16 +0000 (GMT)




ADVISORY % x Thu Mar 16 13:43:13 EST 2006 x % Local Privilege Escalation Vulnerability in Apple iTunes




1. Background
This vulnerability had no identified background.
2. History
28/1/2006 - Vendor Notification.
16/3/2006 - Public Disclosure.
3. Vendor Response
Apple iTunes is extended no explanation.
4. CVE Information
The Common Vulnerabilities and Exposures (CVE) project has assigned the name CVE-2006-660424 to this issue

Appendix A Vendor Information
http://www.apple.com/itunes/

Appendix B References
RFC 6269

Contact
Micheal Turner wh1t3h4t3 () yahoo co uk

CISSP GSAE CCE CEH SSP-CNSA SSP-MPA GIPS GWAS SSCP 

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Current thread:

ADVISORY % x Thu Mar 16 13:43:13 EST 2006 x % Local Privilege Escalation Vulnerability in Apple iTunes wh1t3h4t3 (Mar 16)