Full Disclosure mailing list archives
-Advisory- * +Thu Mar 16 13:57:48 EST 2006+ * Buffer Overflow in Apple iTunes
From: dmargoli+lists () af0 net
Date: Thu, 16 Mar 2006 18:57:58 +0000 (GMT)
-Advisory- * +Thu Mar 16 13:57:48 EST 2006+ * Buffer Overflow in Apple iTunes ========================== o/ å Background This product has no identified background information on the issue in question. ========================== å \o Description It is possible to make Apple iTunes crash or run arbitrary code by the use of malformed input. ========================== o/ å CVE Information The Common Vulnerabilities and Exposures (CVE) project has assigned the name CVE-2006-37607 to this issue ========================== Appendix A Vendor Information http://www.apple.com/itunes/ ========================== Appendix B References RFC 7426 ========================== Contact Dan Margolis lolville () spam la 1-888-565-9428 CISSP GSAE CEH CAP SSCP _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Current thread:
- -Advisory- * +Thu Mar 16 13:57:48 EST 2006+ * Buffer Overflow in Apple iTunes dmargoli+lists (Mar 16)