CVE-2016-1742
published 2016-05-20CVE-2016-1742: Untrusted search path vulnerability in the installer in Apple iTunes before 12.4 allows local users to gain privileges via a Trojan horse DLL in the current…
high7.8CVSS 3.0
AVLACLPRLUINSUCHIHAH
Untrusted search path vulnerability in the installer in Apple iTunes before 12.4 allows local users to gain privileges via a Trojan horse DLL in the current working directory.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| apple | itunes | <= 12.3.1 | — |
| apple | itunes | — | — |
GHSA
GHSA-qcc8-2v4m-qw7h: Untrusted search path vulnerability in the installer in Apple iTunes before 12
ghsa_unreviewed·2022-05-17
CVE-2016-1742 [HIGH] GHSA-qcc8-2v4m-qw7h: Untrusted search path vulnerability in the installer in Apple iTunes before 12
Untrusted search path vulnerability in the installer in Apple iTunes before 12.4 allows local users to gain privileges via a Trojan horse DLL in the current working directory.
Apple
CVE-2016-1742: iTunes 12.4
vendor_apple·CVSS 7.8
CVE-2016-1742 [HIGH] CVE-2016-1742: iTunes 12.4
Apple Security Update: About the security content of iTunes 12.4
Product: iTunes
Version: 12.4
CVE: CVE-2016-1742
Component: CVE-ID
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
2016-05-20
Published