Info

Disclosure

Jan 11, 2005

Discovery

Unknown

Dates

Exploit

Jan 15, 2005

Solution

Unknown

Description

A local overflow exists in iTunes. iTunes fails to perform proper bounds checking on m3u/pls playlists, which may result in a buffer overflow. A remote attacker can create a specially crafted m3u/pls playlist which when executed by a local user can cause a buffer overflow resulting in a loss of integrity and/or availability.

Classification

Location: Local Access Required
Attack Type: Input Manipulation
Impact: Loss of Integrity, Loss of Availability
Exploit: Exploit Public
Disclosure: OSVDB Verified

Solution

Upgrade to version 4.7.1 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.

Products

Apple Computer, Inc.	iTunes	4.7.0
		4.6.x
		4.5.x
		4.4.x
		4.3.x
		4.2.x
		4.1.x
		4.0.x

References

Security Tracker: 1012839
Bugtraq ID: 12238
Metasploit ID: 12833
Secunia Advisory ID: 13804
ISS X-Force ID: 18851
CVE ID: 2005-0043 (see also: NVD)
CERT VU: 377368
Milw0rm: 758
Exploit Database: 758
Keyword: APPLE-SA-2005-01-11
Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2005-01/0154.html
http://archives.neohapsis.com/archives/bugtraq/2005-01/0172.html
http://lists.apple.com/archives/security-announce/2005/Jan/msg00000.html
Vendor Specific Solution URL: http://docs.info.apple.com/article.html?artnum=300667
Vendor URL: http://www.apple.com/itunes/
Other Advisory URL: http://www.idefense.com/application/poi/display?id=180&type=vulnerabilities

Credit

Sean de Regge - seandereggehotmail.com, -

Direct URL: http://osvdb.org/12833

Info

Disclosure

Discovery

Dates

Exploit

Solution

Description

Classification

Solution

Products

Apple Computer, Inc.

iTunes

References

Credit