Vulnerabilities > CVE-2010-1768 - Unspecified vulnerability in Apple Itunes

CVSS 0.0 - NONE

Attack vector

UNKNOWN

Attack complexity

UNKNOWN

Privileges required

UNKNOWN

Confidentiality impact

UNKNOWN

Integrity impact

UNKNOWN

Availability impact

UNKNOWN

apple

nessus

NVD

Published: 2010-08-20

Updated: 2017-09-19

Summary

Unspecified vulnerability in Apple iTunes before 9.1 allows local users to gain console privileges via vectors related to log files, "insecure file operation," and syncing an iPhone, iPad, or iPod touch.

Vulnerable Configurations

Part	Description	Count
Application	Apple Apple Itunes 7.6.0 Apple Itunes 4.0.0 Apple Itunes 4.0.1 Apple Itunes 4.1.0 Apple Itunes 4.2.0 Apple Itunes 4.5.0 Apple Itunes 4.6.0 Apple Itunes 4.7.0 Apple Itunes 4.7.1 Apple Itunes 4.8.0 Apple Itunes 4.9.0 Apple Itunes 5.0.0 Apple Itunes 5.0.1 Apple Itunes 6.0.0 Apple Itunes 6.0.1 Apple Itunes 6.0.2 Apple Itunes 6.0.3 Apple Itunes 6.0.4 Apple Itunes 6.0.5 Apple Itunes 7.0.0 Apple Itunes 7.0.1 Apple Itunes 7.0.2 Apple Itunes 7.1.0 Apple Itunes 7.1.1 Apple Itunes 7.2.0 Apple Itunes 7.3.0 Apple Itunes 7.3.1 Apple Itunes 7.3.2 Apple Itunes 7.4.0 Apple Itunes 7.4.1 Apple Itunes 7.4.2 Apple Itunes 7.5.0 Apple Itunes 7.6.1 Apple Itunes 7.6.2 Apple Itunes 7.7.0 Apple Itunes 7.7.1 Apple Itunes 8.0.0 Apple Itunes 8.0.1 Apple Itunes 9.0.0 Apple Itunes 8.0.2 Apple Itunes 9.0.2 Apple Itunes 3.0.0 Apple Itunes 1.1.1 Apple Itunes 8.1 Apple Itunes 8.1.1 Apple Itunes 1.0 Apple Itunes 6.0.4.2 Apple Itunes 7.4.3 Apple Itunes 2.0.2 Apple Itunes 2.0.1 Apple Itunes 2.0.3 Apple Itunes 9.0.1 Apple Itunes 8.2.1 Apple Itunes 2.0.4 Apple Itunes 1.1.0 Apple Itunes 2.0.0 Apple Itunes 1.1.2 Apple Itunes 8.2 Apple Itunes 3.0.1	59

Nessus

NASL family	MacOS X Local Security Checks
NASL id	MACOSX_ITUNES_9_1.NASL
description	The remote version of iTunes is older than 9.1. Such versions are potentially affected by multiple vulnerabilities : - An infinite loop in the application
last seen	2020-06-01
modified	2020-06-02
plugin id	45389
published	2010-03-31
reporter	This script is Copyright (C) 2010-2018 Tenable Network Security, Inc.
source	https://www.tenable.com/plugins/nessus/45389
title	iTunes < 9.1 Multiple Vulnerabilities (Mac OS X)

NASL family	Peer-To-Peer File Sharing
NASL id	ITUNES_9_1_BANNER.NASL
description	The version of Apple iTunes on the remote host is prior to version 9.1. It is, therefore, affected by multiple vulnerabilities : - A buffer underflow in ImageIO
last seen	2020-06-01
modified	2020-06-02
plugin id	45391
published	2010-03-31
reporter	This script is Copyright (C) 2010-2018 Tenable Network Security, Inc.
source	https://www.tenable.com/plugins/nessus/45391
title	Apple iTunes < 9.1 Multiple Vulnerabilities (uncredentialed check)

Oval

accepted

2015-06-22T04:00:50.025-04:00

class

vulnerability

contributors

name SecPod Team
organization SecPod Technologies
name Scott Quint
organization Quintechssential
name Pooja Shetty
organization SecPod Technologies
name Maria Kedovskaya
organization ALTX-SOFT
name Shane Shaffer
organization G2, Inc.
name Bernd Eggenmueller
organization baramundi software

definition_extensions

comment	Apple iTunes is installed
oval	oval:org.mitre.oval:def:12353

description

family

windows

oval:org.mitre.oval:def:7604

status

accepted

submitted

2010-09-23T02:48:16

title

Apple iTunes Log File Insecure File Operation Local Privilege Escalation Vulnerability

version

Summary

Vulnerable Configurations

Nessus

Oval

References