Detections
Analytics
Apple iTunes < 10.5.1 Update Authenticity Verification Weakness (credentialed check)
medium Nessus Plugin ID 56872
Language:
Synopsis
The remote host contains an application that is susceptible to a man-in-the-middle attack.Description
The version of Apple iTunes installed on the remote Mac OS X host is earlier than 10.5.1. As such, it uses an unsecured HTTP connection when checking for or retrieving software updates, which could allow a man-in-the-middle attacker to provide a Trojan horse update that appears to originate from Apple.Solution
Upgrade to Apple iTunes 10.5.1 or later.See Also
http://seclists.org/bugtraq/2008/Jul/249
https://support.apple.com/kb/HT5030
http://lists.apple.com/archives/security-announce/2011/Nov/msg00003.html
Plugin Details
Severity: Medium
ID: 56872
File Name: itunes_10_5_1.nasl
Version: 1.7
Type: local
Agent: windows
Family: Windows
Published: 11/18/2011
Updated: 7/12/2018
Supported Sensors: Nessus Agent, Nessus
Risk Information
VPR
Risk Factor: Low
Score: 3.4
CVSS v2
Risk Factor: Medium
Base Score: 5.1
Temporal Score: 3.8
Vector: CVSS2#AV:N/AC:H/Au:N/C:P/I:P/A:P
Vulnerability Information
CPE: cpe:/a:apple:itunes
Required KB Items: SMB/iTunes/Version
Exploit Ease: No known exploits are available
Patch Publication Date: 11/14/2011
Vulnerability Publication Date: 7/28/2008
Reference Information
CVE: CVE-2008-3434
BID: 50672
CWE: 94