CVE-2010-0532Race Condition in Apple Itunes

CWE-362Race Condition2 documents2 sources
Severity
6.9MEDIUMNVD
EPSS
0.0%
top 91.30%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Apple Itunes
Timeline
PublishedMar 31
Latest updateMay 2

Description

Race condition in the installation package in Apple iTunes before 9.1 on Windows allows local users to gain privileges by replacing an unspecified file with a Trojan horse.

CVSS vector

AV:L/AC:M/C:C/I:C/A:CExploitability: 3.4 | Impact: 10.0

Affected Packages1 packages

NVDapple/itunes9.0.3+4

Patches

Patch: lists.apple.comPatch: lists.apple.com

🔴Vulnerability Details

1
GHSA
GHSA-32pg-5795-jh5m: Race condition in the installation package in Apple iTunes before 92022-05-02