Vulnerabilities > Apple > Itunes > 8.0.1
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2009-06-02 | CVE-2009-0950 | Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Apple Itunes Stack-based buffer overflow in Apple iTunes before 8.2 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via an itms: URL with a long URL component after a colon. | 9.3 |
2009-03-14 | CVE-2009-0143 | Information Exposure vulnerability in Apple Itunes Apple iTunes before 8.1 does not properly inform the user about the origin of an authentication request, which makes it easier for remote podcast servers to trick a user into providing a username and password when subscribing to a crafted podcast. | 4.3 |