Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Apple iTunes 7.0.2 allows user-assisted remote attackers to cause a denial of service (application crash) via a crafted XML list of radio stations, which results in memory corruption. NOTE: iTunes retrieves the XML document from a static URL, which requires an attacker to perform DNS spoofing or man-in-the-middle attacks for exploitation.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Apple iTunes XML解析拒绝服务攻击漏洞
Vulnerability Description
Apple iTunes 7.0.2版本允许用户协助式的远程攻击者可以借助一个特制的电台的XML列表,且该列表会引起内存破坏,造成拒绝服务(应用程序崩溃)。注意:iTunes重新得到一个静态URL中的XML文件,这会使一个攻击者发动DNS欺诈或对开发利用的中间人攻击。
CVSS Information
N/A
Vulnerability Type
N/A