exploitDog

GHSA-mm4c-ggh7-6cw3

Опубликовано: 01 мая 2022

Источник: github

Github: Не прошло ревью

Описание

Heap-based buffer overflow in Apple iTunes before 7.4 allows remote attackers to cause a denial of service (application crash) or execute arbitrary code via crafted album cover art in the covr atom of an MP4/AAC file.

Heap-based buffer overflow in Apple iTunes before 7.4 allows remote attackers to cause a denial of service (application crash) or execute arbitrary code via crafted album cover art in the covr atom of an MP4/AAC file.

Ссылки

EPSS

Процентиль: 95%

0.16027

Средний

CVE ID

Дефекты

CWE-119

Связанные уязвимости

CVE-2007-3752

nvd

больше 18 лет назад

Heap-based buffer overflow in Apple iTunes before 7.4 allows remote attackers to cause a denial of service (application crash) or execute arbitrary code via crafted album cover art in the covr atom of an MP4/AAC file.

EPSS

Процентиль: 95%

0.16027

Средний

CVE ID

Дефекты

CWE-119