Apple Itunes 12.7 For Windows vulnerabilities

CVE-2017-7376 [CRITICAL] CVE-2017-7376: iTunes 12.7 for Windows Apple Security Update: About the security content of iTunes 12.7 for Windows Product: iTunes 12.7 for Windows CVE: CVE-2017-7376 Component: ImageIO Impact: Processing a maliciously crafted image may lead to a denial of service Description: An information disclosure issue existed in the processing of disk images. This issue was addressed through improved memory management.

CVE-2017-7102 [HIGH] CVE-2017-7102: iTunes 12.7 for Windows Apple Security Update: About the security content of iTunes 12.7 for Windows Product: iTunes 12.7 for Windows CVE: CVE-2017-7102 Component: WebKit Impact: Processing maliciously crafted web content may lead to arbitrary code execution Description: Multiple memory corruption issues were addressed with improved memory handling.

CVE-2017-7090 [HIGH] CVE-2017-7090: iTunes 12.7 for Windows Apple Security Update: About the security content of iTunes 12.7 for Windows Product: iTunes 12.7 for Windows CVE: CVE-2017-7090 Component: WebKit Impact: Cookies belonging to one origin may be sent to another origin Description: A permissions issue existed in the handling of web browser cookies. This issue was addressed by no longer returning cookies for custom URL schemes.

CVE-2017-7099 [HIGH] CVE-2017-7099: iTunes 12.7 for Windows Apple Security Update: About the security content of iTunes 12.7 for Windows Product: iTunes 12.7 for Windows CVE: CVE-2017-7099 Component: WebKit Impact: Processing maliciously crafted web content may lead to arbitrary code execution Description: Multiple memory corruption issues were addressed with improved memory handling.

CVE-2017-7092 [HIGH] CVE-2017-7092: iTunes 12.7 for Windows Apple Security Update: About the security content of iTunes 12.7 for Windows Product: iTunes 12.7 for Windows CVE: CVE-2017-7092 Component: WebKit Impact: Processing maliciously crafted web content may lead to arbitrary code execution Description: Multiple memory corruption issues were addressed with improved memory handling.

CVE-2017-7081 [HIGH] CVE-2017-7081: iTunes 12.7 for Windows Apple Security Update: About the security content of iTunes 12.7 for Windows Product: iTunes 12.7 for Windows CVE: CVE-2017-7081 Component: WebKit Impact: Processing maliciously crafted web content may lead to arbitrary code execution Description: A memory corruption issue was addressed through improved input validation.

CVE-2017-7120 [HIGH] CVE-2017-7120: iTunes 12.7 for Windows Apple Security Update: About the security content of iTunes 12.7 for Windows Product: iTunes 12.7 for Windows CVE: CVE-2017-7120 Component: WebKit Impact: Processing maliciously crafted web content may lead to arbitrary code execution Description: Multiple memory corruption issues were addressed with improved memory handling.

CVE-2017-13829 [HIGH] CVE-2017-13829: iTunes 12.7 for Windows Apple Security Update: About the security content of iTunes 12.7 for Windows Product: iTunes 12.7 for Windows CVE: CVE-2017-13829 Component: CFNetwork Impact: An application may be able to execute arbitrary code with system privileges Description: A memory corruption issue was addressed with improved memory handling.

CVE-2017-7107 [HIGH] CVE-2017-7107: iTunes 12.7 for Windows Apple Security Update: About the security content of iTunes 12.7 for Windows Product: iTunes 12.7 for Windows CVE: CVE-2017-7107 Component: WebKit Impact: Processing maliciously crafted web content may lead to arbitrary code execution Description: Multiple memory corruption issues were addressed with improved memory handling.

CVE-2017-7111 [HIGH] CVE-2017-7111: iTunes 12.7 for Windows Apple Security Update: About the security content of iTunes 12.7 for Windows Product: iTunes 12.7 for Windows CVE: CVE-2017-7111 Component: WebKit Impact: Processing maliciously crafted web content may lead to arbitrary code execution Description: Multiple memory corruption issues were addressed with improved memory handling.

CVE-2017-9050 [HIGH] CVE-2017-9050: iTunes 12.7 for Windows Apple Security Update: About the security content of iTunes 12.7 for Windows Product: iTunes 12.7 for Windows CVE: CVE-2017-9050 Component: ImageIO Impact: Processing a maliciously crafted image may lead to a denial of service Description: An information disclosure issue existed in the processing of disk images. This issue was addressed through improved memory management.

CVE-2017-7100 [HIGH] CVE-2017-7100: iTunes 12.7 for Windows Apple Security Update: About the security content of iTunes 12.7 for Windows Product: iTunes 12.7 for Windows CVE: CVE-2017-7100 Component: WebKit Impact: Processing maliciously crafted web content may lead to arbitrary code execution Description: Multiple memory corruption issues were addressed with improved memory handling.

CVE-2018-4302 [HIGH] CVE-2018-4302: iTunes 12.7 for Windows Apple Security Update: About the security content of iTunes 12.7 for Windows Product: iTunes 12.7 for Windows CVE: CVE-2018-4302 Component: ImageIO Impact: Processing a maliciously crafted image may lead to a denial of service Description: An information disclosure issue existed in the processing of disk images. This issue was addressed through improved memory management.

CVE-2017-9049 [HIGH] CVE-2017-9049: iTunes 12.7 for Windows Apple Security Update: About the security content of iTunes 12.7 for Windows Product: iTunes 12.7 for Windows CVE: CVE-2017-9049 Component: ImageIO Impact: Processing a maliciously crafted image may lead to a denial of service Description: An information disclosure issue existed in the processing of disk images. This issue was addressed through improved memory management.

CVE-2017-5130 [HIGH] CVE-2017-5130: iTunes 12.7 for Windows Apple Security Update: About the security content of iTunes 12.7 for Windows Product: iTunes 12.7 for Windows CVE: CVE-2017-5130 Component: ImageIO Impact: Processing a maliciously crafted image may lead to a denial of service Description: An information disclosure issue existed in the processing of disk images. This issue was addressed through improved memory management.

CVE-2017-7095 [HIGH] CVE-2017-7095: iTunes 12.7 for Windows Apple Security Update: About the security content of iTunes 12.7 for Windows Product: iTunes 12.7 for Windows CVE: CVE-2017-7095 Component: WebKit Impact: Processing maliciously crafted web content may lead to arbitrary code execution Description: Multiple memory corruption issues were addressed with improved memory handling.

CVE-2017-7117 [HIGH] CVE-2017-7117: iTunes 12.7 for Windows Apple Security Update: About the security content of iTunes 12.7 for Windows Product: iTunes 12.7 for Windows CVE: CVE-2017-7117 Component: WebKit Impact: Processing maliciously crafted web content may lead to arbitrary code execution Description: Multiple memory corruption issues were addressed with improved memory handling.

CVE-2017-7093 [HIGH] CVE-2017-7093: iTunes 12.7 for Windows Apple Security Update: About the security content of iTunes 12.7 for Windows Product: iTunes 12.7 for Windows CVE: CVE-2017-7093 Component: WebKit Impact: Processing maliciously crafted web content may lead to arbitrary code execution Description: Multiple memory corruption issues were addressed with improved memory handling.

CVE-2017-13831 [HIGH] CVE-2017-13831: iTunes 12.7 for Windows Apple Security Update: About the security content of iTunes 12.7 for Windows Product: iTunes 12.7 for Windows CVE: CVE-2017-13831 Component: ImageIO Impact: Processing a maliciously crafted image may lead to a denial of service Description: An information disclosure issue existed in the processing of disk images. This issue was addressed through improved memory management.

CVE-2017-7104 [HIGH] CVE-2017-7104: iTunes 12.7 for Windows Apple Security Update: About the security content of iTunes 12.7 for Windows Product: iTunes 12.7 for Windows CVE: CVE-2017-7104 Component: WebKit Impact: Processing maliciously crafted web content may lead to arbitrary code execution Description: Multiple memory corruption issues were addressed with improved memory handling.