Apple iTunes < 10.2 多种漏洞(凭据检查)

high Nessus 插件 ID 52534

简介

远程主机包含存在多种漏洞的应用程序。

描述

远程 Windows 主机上安装的 Apple iTunes 版本低于 10.2。因此,它受到以下组件中许多问题的影响:

- ImageIO

- libxml

- WebKit

解决方案

升级到 Apple iTunes 10.2 或更高版本。

另见

https://support.apple.com/en-us/HT4554

https://lists.apple.com/archives/security-announce/2011/Mar/msg00000.html

插件详情

严重性: High

ID: 52534

文件名: itunes_10_2.nasl

版本: 1.21

类型: local

代理: windows

系列: Windows

发布时间: 2011/3/3

最近更新时间: 2018/11/15

支持的传感器: Nessus Agent, Nessus

风险信息

VPR

风险因素: High

分数: 7.4

CVSS v2

风险因素: High

基本分数: 9.3

时间分数: 7.3

矢量: CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C

漏洞信息

CPE: cpe:/a:apple:itunes

必需的 KB 项: SMB/iTunes/Version

可利用: true

易利用性: Exploits are available

补丁发布日期: 2011/3/2

漏洞发布日期: 2010/6/25

参考资料信息

CVE: CVE-2010-1205, CVE-2010-1824, CVE-2010-2249, CVE-2010-4008, CVE-2010-4494, CVE-2011-0111, CVE-2011-0112, CVE-2011-0113, CVE-2011-0114, CVE-2011-0115, CVE-2011-0116, CVE-2011-0117, CVE-2011-0118, CVE-2011-0119, CVE-2011-0120, CVE-2011-0121, CVE-2011-0122, CVE-2011-0123, CVE-2011-0124, CVE-2011-0125, CVE-2011-0126, CVE-2011-0127, CVE-2011-0128, CVE-2011-0129, CVE-2011-0130, CVE-2011-0131, CVE-2011-0132, CVE-2011-0133, CVE-2011-0134, CVE-2011-0135, CVE-2011-0136, CVE-2011-0137, CVE-2011-0138, CVE-2011-0139, CVE-2011-0140, CVE-2011-0141, CVE-2011-0142, CVE-2011-0143, CVE-2011-0144, CVE-2011-0145, CVE-2011-0146, CVE-2011-0147, CVE-2011-0148, CVE-2011-0149, CVE-2011-0150, CVE-2011-0151, CVE-2011-0152, CVE-2011-0153, CVE-2011-0154, CVE-2011-0155, CVE-2011-0156, CVE-2011-0164, CVE-2011-0165, CVE-2011-0168, CVE-2011-0170, CVE-2011-0191, CVE-2011-0192

BID: 41174, 44779, 46657, 46658, 46659, 46677, 46684, 46686, 46687, 46688, 46689, 46690, 46691, 46692, 46693, 46694, 46695, 46696, 46698, 46699, 46700, 46701, 46702, 46703, 46704, 46705, 46706, 46707, 46708, 46709, 46710, 46711, 46712, 46713, 46714, 46715, 46716, 46717, 46718, 46719, 46720, 46721, 46722, 46723, 46724, 46725, 46726, 46727, 46728, 46744, 46745, 46746, 46747, 46748, 46749