Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
WebKit, as used in Apple iTunes before 12.3, allows man-in-the-middle attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via vectors related to iTunes Store browsing, a different vulnerability than other WebKit CVEs listed in APPLE-SA-2015-09-16-3.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Apple iTunes WebKit 缓冲区溢出漏洞
Vulnerability Description
Apple iTunes是美国苹果(Apple)公司的一套媒体播放器应用程序,它主要用于对数字音乐和视频文件进行播放以及管理。WebKit是KDE、苹果(Apple)、谷歌(Google)等公司共同开发的一套开源Web浏览器引擎,目前被Apple Safari及Google Chrome等浏览器使用。 Apple iTunes 12.2及之前版本中使用的WebKit中存在内存损坏漏洞。攻击者可通过浏览iTunes Store利用该漏洞实施中间人攻击,造成拒绝服务(内存损坏和应用程序崩溃),或执行任意代码。
CVSS Information
N/A
Vulnerability Type
N/A