Language:
http://lists.apple.com/archives/security-announce/2012/Jun/msg00000.html
Severity: High
ID: 59499
File Name: macosx_itunes_10_6_3.nasl
Version: 1.14
Type: local
Agent: macosx
Family: MacOS X Local Security Checks
Published: 6/14/2012
Updated: 7/14/2018
Supported Sensors: Nessus Agent, Nessus
Risk Factor: High
Score: 7.4
Risk Factor: High
Base Score: 9.3
Temporal Score: 7.7
Vector: CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C
Risk Factor: High
Base Score: 8.8
Temporal Score: 8.2
Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Temporal Vector: CVSS:3.0/E:F/RL:O/RC:C
CPE: cpe:/a:apple:itunes
Required KB Items: Host/MacOSX/Version, installed_sw/iTunes
Exploit Available: true
Exploit Ease: Exploits are available
Patch Publication Date: 6/11/2012
Vulnerability Publication Date: 6/11/2012
CANVAS (CANVAS)
Core Impact
Metasploit (Apple iTunes 10 Extended M3U Stack Buffer Overflow)
CVE: CVE-2012-0677