Apple iTunes < 10.2 多個弱點 (未經認證的檢查)
high Nessus Plugin ID 52535
語系:
概要
遠端主機包含一個有多個弱點的多媒體應用程式。說明
遠端主機上的 Apple iTunes 版本比 10.2 版舊。因此會受到 WebKit、ImageIO 和 libxml 元件中的多個弱點影響。請注意,這些問題只會影響 iTunes for Windows。解決方案
升級至 Apple iTunes 10.2 或更新版本。另請參閱
https://support.apple.com/en-us/HT4554
https://lists.apple.com/archives/security-announce/2011/Mar/msg00000.html
Plugin 詳細資訊
嚴重性: High
ID: 52535
檔案名稱: itunes_10_2_banner.nasl
版本: 1.22
類型: remote
已發布: 2011/3/3
已更新: 2018/11/15
支援的感應器: Nessus
風險資訊
VPR
風險因素: High
分數: 7.4
CVSS v2
風險因素: High
基本分數: 9.3
時間分數: 7.3
媒介: CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C
弱點資訊
CPE: cpe:/a:apple:itunes
必要的 KB 項目: iTunes/sharing
可被惡意程式利用: true
可輕鬆利用: Exploits are available
修補程式發佈日期: 2011/3/2
弱點發布日期: 2010/6/25
參考資訊
CVE: CVE-2010-1205, CVE-2010-1824, CVE-2010-2249, CVE-2010-4008, CVE-2010-4494, CVE-2011-0111, CVE-2011-0112, CVE-2011-0113, CVE-2011-0114, CVE-2011-0115, CVE-2011-0116, CVE-2011-0117, CVE-2011-0118, CVE-2011-0119, CVE-2011-0120, CVE-2011-0121, CVE-2011-0122, CVE-2011-0123, CVE-2011-0124, CVE-2011-0125, CVE-2011-0126, CVE-2011-0127, CVE-2011-0128, CVE-2011-0129, CVE-2011-0130, CVE-2011-0131, CVE-2011-0132, CVE-2011-0133, CVE-2011-0134, CVE-2011-0135, CVE-2011-0136, CVE-2011-0137, CVE-2011-0138, CVE-2011-0139, CVE-2011-0140, CVE-2011-0141, CVE-2011-0142, CVE-2011-0143, CVE-2011-0144, CVE-2011-0145, CVE-2011-0146, CVE-2011-0147, CVE-2011-0148, CVE-2011-0149, CVE-2011-0150, CVE-2011-0151, CVE-2011-0152, CVE-2011-0153, CVE-2011-0154, CVE-2011-0155, CVE-2011-0156, CVE-2011-0164, CVE-2011-0165, CVE-2011-0168, CVE-2011-0170, CVE-2011-0191, CVE-2011-0192
BID: 41174, 44779, 46657, 46658, 46659, 46677, 46684, 46686, 46687, 46688, 46689, 46690, 46691, 46692, 46693, 46694, 46695, 46696, 46698, 46699, 46700, 46701, 46702, 46703, 46704, 46705, 46706, 46707, 46708, 46709, 46710, 46711, 46712, 46713, 46714, 46715, 46716, 46717, 46718, 46719, 46720, 46721, 46722, 46723, 46724, 46725, 46726, 46727, 46728, 46744, 46745, 46746, 46747, 46748, 46749