CVE-2005-1248Improper Restriction of Operations within the Bounds of a Memory Buffer in Apple Itunes

2 documents2 sources
Severity
7.5HIGHNVD
EPSS
6.3%
top 9.04%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Apple Itunes
Timeline
PublishedMay 16
Latest updateMay 1

Description

Buffer overflow in Apple iTunes before 4.8 allows remote attackers to execute arbitrary code via a crafted MPEG4 file.

CVSS vector

AV:N/AC:L/C:P/I:P/A:PExploitability: 10.0 | Impact: 6.4

Affected Packages1 packages

NVDapple/itunes5 versions+4

Patches

Patch: lists.apple.comPatch: secunia.comPatch: securitytracker.com

🔴Vulnerability Details

1
GHSA
GHSA-3qg9-h6qr-3w9j: Buffer overflow in Apple iTunes before 42022-05-01