ID CVE-2006-1467
Summary Integer overflow in the AAC file parsing code in Apple iTunes before 6.0.5 on Mac OS X 10.2.8 or later, and Windows XP and 2000, allows remote user-assisted attackers to execute arbitrary code via an AAC (M4P, M4A, or M4B) file with a sample table size (STSZ) atom with a "malformed" sample_size_table value.
References
Vulnerable Configurations
  • Apple iTunes 6.0.4
    cpe:2.3:a:apple:itunes:6.0.4
CVSS
Base: 5.1 (as of 03-07-2006 - 09:34)
Impact:
Exploitability:
CWE CWE-189
CAPEC
Access
VectorComplexityAuthentication
NETWORK HIGH NONE
Impact
ConfidentialityIntegrityAvailability
PARTIAL PARTIAL PARTIAL
nessus via4
  • NASL family Windows
    NASL id ITUNES_605.NASL
    description The remote host is running Apple iTunes, a popular media player. The remote version of iTunes is vulnerable to an integer overflow when it parses a specially crafted AAC file. By tricking a user into opening such a file, a remote attacker may be able to leverage this issue to execute arbitrary code on the affected host, subject to the privileges of the user running the application.
    last seen 2019-02-21
    modified 2018-11-15
    plugin id 21782
    published 2006-06-30
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=21782
    title Apple iTunes AAC File Parsing Integer Overflow (credentialed check)
  • NASL family Peer-To-Peer File Sharing
    NASL id ITUNES_605_BANNER.NASL
    description The version of Apple iTunes running on the remote host is affected by an integer overflow vulnerability when it parses specially crafted AAC files. By convincing a user to open such a file, a remote attacker can execute arbitrary code with the same level of privileges as the user.
    last seen 2019-02-21
    modified 2018-11-15
    plugin id 21783
    published 2006-06-30
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=21783
    title Apple iTunes AAC File Parsing Integer Overflow (uncredentialed check)
  • NASL family MacOS X Local Security Checks
    NASL id MACOSX_ITUNES_OVERFLOW3.NASL
    description The remote host is running iTunes, a popular jukebox program. The remote version of this software is vulnerable to an integer overflow when it parses specially crafted AAC files which may lead to the execution of arbitrary code. An attacker may exploit this flaw by sending a malformed AAC file to a user on the remote host and wait for him to play it with iTunes.
    last seen 2019-02-21
    modified 2018-07-14
    plugin id 21781
    published 2006-06-29
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=21781
    title iTunes < 6.0.5 AAC File Integer Overflow (Mac OS X)
refmap via4
apple APPLE-SA-2006-06-29
bid 18730
bugtraq 20060630 ZDI-06-020: Apple iTunes AAC File Parsing Integer Overflow Vulnerability
cert-vn VU#907836
misc http://www.zerodayinitiative.com/advisories/ZDI-06-020.html
sectrack 1016413
secunia 20891
vupen ADV-2006-2601
xf itunes-aac-file-overflow(27481)
Last major update 07-03-2011 - 00:00
Published 29-06-2006 - 19:05
Last modified 18-10-2018 - 12:32
Back to Top