This host has iTunes installed, which is prone to multiple vulnerabilities.

Successful exploitation could allow the attacker to cause denial of service and obtain system privileges during installation. Impact Level: Application

Upgrade to Apple Apple iTunes version 9.1 or later, For updates refer to http://www.apple.com/itunes/download/

Multiple flaws are due to: - An infinite loop issue in the handling of 'MP4' files. A maliciously crafted podcast may be able to cause an infinite loop in iTunes, and prevent its operation even after it is relaunched. - A privilege escalation issue in Windows installation package. During the installation process, a race condition may allow a local user to modify a file that is then executed with system privileges.

Apple iTunes version prior to 9.1 (9.1.0.79)

• http://en.securitylab.ru/nvd/392444.php
• http://secunia.com/advisories/39135

---

Updated on 2017-03-28