cnvd - cnvd-2019-35805

cnvd-2019-35805

Vulnerability from cnvd

Title: Apple macOS、iCloud for Windows和iTunes for Windows UIFoundation组件缓冲区溢出漏洞

Description:

Apple iTunes for Windows等都是美国苹果（Apple）公司的产品。Apple iTunes for Windows是一款基于Windows平台的媒体播放器应用程序。Apple iCloud for Windows是一款基于Windows平台的云服务。该产品支持存储音乐、照片、App和联系人等。Apple macOS Catalina是一套专为Mac计算机所开发的专用操作系统。UIFoundation是其中的一个UI框架组件。

Apple macOS、iCloud for Windows和iTunes for Windows中的UIFoundation组件存在缓冲区溢出漏洞。攻击者可借助恶意制作的文本文件利用该漏洞执行任意代码。

Severity: 高

Patch Name: Apple macOS、iCloud for Windows和iTunes for Windows UIFoundation组件缓冲区溢出漏洞的补丁

Patch Description:

Apple macOS、iCloud for Windows和iTunes for Windows中的UIFoundation组件存在缓冲区溢出漏洞。攻击者可借助恶意制作的文本文件利用该漏洞执行任意代码。目前，供应商发布了安全公告及相关补丁信息，修复了此漏洞。

Formal description:

目前厂商已发布升级补丁以修复漏洞，补丁获取链接： https://support.apple.com/zh-cn/HT210634

Reference: https://www.zerodayinitiative.com/advisories/ZDI-19-863/ http://seclists.org/fulldisclosure/2019/Oct/12 https://packetstormsecurity.com/files/154780/Apple-Security-Advisory-2019-10-07-4.html

Impacted products

Name
['Apple macOS Catalina <10.15', 'Apple iCloud for Windows <7.14', 'Apple iCloud for Windows <10.7', 'Apple iTunes for Windows <12.10.1']

Show details on source website

JSON

To clipboard

{
  "cves": {
    "cve": {
      "cveNumber": "CVE-2019-8745"
    }
  },
  "description": "Apple iTunes for Windows\u7b49\u90fd\u662f\u7f8e\u56fd\u82f9\u679c\uff08Apple\uff09\u516c\u53f8\u7684\u4ea7\u54c1\u3002Apple iTunes for Windows\u662f\u4e00\u6b3e\u57fa\u4e8eWindows\u5e73\u53f0\u7684\u5a92\u4f53\u64ad\u653e\u5668\u5e94\u7528\u7a0b\u5e8f\u3002Apple iCloud for Windows\u662f\u4e00\u6b3e\u57fa\u4e8eWindows\u5e73\u53f0\u7684\u4e91\u670d\u52a1\u3002\u8be5\u4ea7\u54c1\u652f\u6301\u5b58\u50a8\u97f3\u4e50\u3001\u7167\u7247\u3001App\u548c\u8054\u7cfb\u4eba\u7b49\u3002Apple macOS Catalina\u662f\u4e00\u5957\u4e13\u4e3aMac\u8ba1\u7b97\u673a\u6240\u5f00\u53d1\u7684\u4e13\u7528\u64cd\u4f5c\u7cfb\u7edf\u3002UIFoundation\u662f\u5176\u4e2d\u7684\u4e00\u4e2aUI\u6846\u67b6\u7ec4\u4ef6\u3002\n\nApple macOS\u3001iCloud for Windows\u548ciTunes for Windows\u4e2d\u7684UIFoundation\u7ec4\u4ef6\u5b58\u5728\u7f13\u51b2\u533a\u6ea2\u51fa\u6f0f\u6d1e\u3002\u653b\u51fb\u8005\u53ef\u501f\u52a9\u6076\u610f\u5236\u4f5c\u7684\u6587\u672c\u6587\u4ef6\u5229\u7528\u8be5\u6f0f\u6d1e\u6267\u884c\u4efb\u610f\u4ee3\u7801\u3002",
  "discovererName": "riusksk of VulWar Corp working with Trend Micro\u0027s Zero Day Initiative",
  "formalWay": "\u76ee\u524d\u5382\u5546\u5df2\u53d1\u5e03\u5347\u7ea7\u8865\u4e01\u4ee5\u4fee\u590d\u6f0f\u6d1e\uff0c\u8865\u4e01\u83b7\u53d6\u94fe\u63a5\uff1a\r\nhttps://support.apple.com/zh-cn/HT210634",
  "isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
  "number": "CNVD-2019-35805",
  "openTime": "2019-10-18",
  "patchDescription": "Apple iTunes for Windows\u7b49\u90fd\u662f\u7f8e\u56fd\u82f9\u679c\uff08Apple\uff09\u516c\u53f8\u7684\u4ea7\u54c1\u3002Apple iTunes for Windows\u662f\u4e00\u6b3e\u57fa\u4e8eWindows\u5e73\u53f0\u7684\u5a92\u4f53\u64ad\u653e\u5668\u5e94\u7528\u7a0b\u5e8f\u3002Apple iCloud for Windows\u662f\u4e00\u6b3e\u57fa\u4e8eWindows\u5e73\u53f0\u7684\u4e91\u670d\u52a1\u3002\u8be5\u4ea7\u54c1\u652f\u6301\u5b58\u50a8\u97f3\u4e50\u3001\u7167\u7247\u3001App\u548c\u8054\u7cfb\u4eba\u7b49\u3002Apple macOS Catalina\u662f\u4e00\u5957\u4e13\u4e3aMac\u8ba1\u7b97\u673a\u6240\u5f00\u53d1\u7684\u4e13\u7528\u64cd\u4f5c\u7cfb\u7edf\u3002UIFoundation\u662f\u5176\u4e2d\u7684\u4e00\u4e2aUI\u6846\u67b6\u7ec4\u4ef6\u3002\r\n\r\nApple macOS\u3001iCloud for Windows\u548ciTunes for Windows\u4e2d\u7684UIFoundation\u7ec4\u4ef6\u5b58\u5728\u7f13\u51b2\u533a\u6ea2\u51fa\u6f0f\u6d1e\u3002\u653b\u51fb\u8005\u53ef\u501f\u52a9\u6076\u610f\u5236\u4f5c\u7684\u6587\u672c\u6587\u4ef6\u5229\u7528\u8be5\u6f0f\u6d1e\u6267\u884c\u4efb\u610f\u4ee3\u7801\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
  "patchName": "Apple macOS\u3001iCloud for Windows\u548ciTunes for Windows UIFoundation\u7ec4\u4ef6\u7f13\u51b2\u533a\u6ea2\u51fa\u6f0f\u6d1e\u7684\u8865\u4e01",
  "products": {
    "product": [
      "Apple macOS Catalina \u003c10.15",
      "Apple iCloud for Windows \u003c7.14",
      "Apple iCloud for Windows \u003c10.7",
      "Apple iTunes for Windows \u003c12.10.1"
    ]
  },
  "referenceLink": "https://www.zerodayinitiative.com/advisories/ZDI-19-863/\r\nhttp://seclists.org/fulldisclosure/2019/Oct/12\r\nhttps://packetstormsecurity.com/files/154780/Apple-Security-Advisory-2019-10-07-4.html",
  "serverity": "\u9ad8",
  "submitTime": "2019-10-10",
  "title": "Apple macOS\u3001iCloud for Windows\u548ciTunes for Windows UIFoundation\u7ec4\u4ef6\u7f13\u51b2\u533a\u6ea2\u51fa\u6f0f\u6d1e"
}

CVE-2019-8745 (GCVE-0-2019-8745)

Vulnerability from cvelistv5

Published

2019-12-18 17:33

Modified

2024-08-04 21:31

Severity ?

CWE

Processing a maliciously crafted text file may lead to arbitrary code execution

Summary

A buffer overflow was addressed with improved bounds checking. This issue is fixed in macOS Catalina 10.15, tvOS 13, iTunes for Windows 12.10.1, iCloud for Windows 10.7, iCloud for Windows 7.14. Processing a maliciously crafted text file may lead to arbitrary code execution.

References

▼	URL	Tags
	https://support.apple.com/kb/HT210722	x_refsource_CONFIRM
	https://support.apple.com/HT210635	x_refsource_MISC
	https://support.apple.com/HT210636	x_refsource_MISC
	https://support.apple.com/HT210637	x_refsource_MISC
	https://support.apple.com/HT210634	x_refsource_MISC

Impacted products

Vendor

Product

Version

▼

Apple

macOS

Version: unspecified < macOS Catalina 10.15

Apple	tvOS	Version: unspecified < tvOS 13
Apple	iTunes for Windows	Version: unspecified < iTunes for Windows 12.10.1
Apple	iCloud for Windows	Version: unspecified < iCloud for Windows 10.7
Apple	iCloud for Windows (Legacy)	Version: unspecified < iCloud for Windows 7.14

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-04T21:31:35.759Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://support.apple.com/kb/HT210722"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/HT210635"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/HT210636"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/HT210637"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.apple.com/HT210634"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "macOS",
          "vendor": "Apple",
          "versions": [
            {
              "lessThan": "macOS Catalina 10.15",
              "status": "affected",
              "version": "unspecified",
              "versionType": "custom"
            }
          ]
        },
        {
          "product": "tvOS",
          "vendor": "Apple",
          "versions": [
            {
              "lessThan": "tvOS 13",
              "status": "affected",
              "version": "unspecified",
              "versionType": "custom"
            }
          ]
        },
        {
          "product": "iTunes for Windows",
          "vendor": "Apple",
          "versions": [
            {
              "lessThan": "iTunes for Windows 12.10.1",
              "status": "affected",
              "version": "unspecified",
              "versionType": "custom"
            }
          ]
        },
        {
          "product": "iCloud for Windows",
          "vendor": "Apple",
          "versions": [
            {
              "lessThan": "iCloud for Windows 10.7",
              "status": "affected",
              "version": "unspecified",
              "versionType": "custom"
            }
          ]
        },
        {
          "product": "iCloud for Windows (Legacy)",
          "vendor": "Apple",
          "versions": [
            {
              "lessThan": "iCloud for Windows 7.14",
              "status": "affected",
              "version": "unspecified",
              "versionType": "custom"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "A buffer overflow was addressed with improved bounds checking. This issue is fixed in macOS Catalina 10.15, tvOS 13, iTunes for Windows 12.10.1, iCloud for Windows 10.7, iCloud for Windows 7.14. Processing a maliciously crafted text file may lead to arbitrary code execution."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "Processing a maliciously crafted text file may lead to arbitrary code execution",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2020-02-12T01:06:09",
        "orgId": "286789f9-fbc2-4510-9f9a-43facdede74c",
        "shortName": "apple"
      },
      "references": [
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://support.apple.com/kb/HT210722"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/HT210635"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/HT210636"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/HT210637"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.apple.com/HT210634"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "product-security@apple.com",
          "ID": "CVE-2019-8745",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "macOS",
                      "version": {
                        "version_data": [
                          {
                            "version_affected": "\u003c",
                            "version_value": "macOS Catalina 10.15"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "tvOS",
                      "version": {
                        "version_data": [
                          {
                            "version_affected": "\u003c",
                            "version_value": "tvOS 13"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "iTunes for Windows",
                      "version": {
                        "version_data": [
                          {
                            "version_affected": "\u003c",
                            "version_value": "iTunes for Windows 12.10.1"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "iCloud for Windows",
                      "version": {
                        "version_data": [
                          {
                            "version_affected": "\u003c",
                            "version_value": "iCloud for Windows 10.7"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "iCloud for Windows (Legacy)",
                      "version": {
                        "version_data": [
                          {
                            "version_affected": "\u003c",
                            "version_value": "iCloud for Windows 7.14"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "Apple"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "A buffer overflow was addressed with improved bounds checking. This issue is fixed in macOS Catalina 10.15, tvOS 13, iTunes for Windows 12.10.1, iCloud for Windows 10.7, iCloud for Windows 7.14. Processing a maliciously crafted text file may lead to arbitrary code execution."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "Processing a maliciously crafted text file may lead to arbitrary code execution"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://support.apple.com/kb/HT210722",
              "refsource": "CONFIRM",
              "url": "https://support.apple.com/kb/HT210722"
            },
            {
              "name": "https://support.apple.com/HT210635",
              "refsource": "MISC",
              "url": "https://support.apple.com/HT210635"
            },
            {
              "name": "https://support.apple.com/HT210636",
              "refsource": "MISC",
              "url": "https://support.apple.com/HT210636"
            },
            {
              "name": "https://support.apple.com/HT210637",
              "refsource": "MISC",
              "url": "https://support.apple.com/HT210637"
            },
            {
              "name": "https://support.apple.com/HT210634",
              "refsource": "MISC",
              "url": "https://support.apple.com/HT210634"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "286789f9-fbc2-4510-9f9a-43facdede74c",
    "assignerShortName": "apple",
    "cveId": "CVE-2019-8745",
    "datePublished": "2019-12-18T17:33:23",
    "dateReserved": "2019-02-18T00:00:00",
    "dateUpdated": "2024-08-04T21:31:35.759Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
Confirmed: The vulnerability is confirmed from an analyst perspective.
Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
Patched: This vulnerability was successfully patched by the user reporting the sighting.
Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
Not confirmed: The user expresses doubt about the veracity of the vulnerability.
Not patched: This vulnerability was not successfully patched by the user reporting the sighting.

Action not permitted