Patch/Configuration Management, Vulnerability Management

iTunes 11.1.4 update bring fixes for 25 bugs

Share

iTunes users running Mac and Windows operating systems now have an update which addresses numerous bugs in the popular media player.

Last Wednesday, Apple released iTunes 11.1.4 plugging 25 vulnerabilities in the application.

The majority of the bugs left users vulnerable to man-in-the-middle (MitM) attacks while they browsed the iTunes Store via the iTunes application. Through exploitation, saboteurs could unexpectedly terminate an application or execute malicious code.

The media player update also addressed flaws that could allow an attacker with a privileged network position to control the contents of the iTunes Tutorials window.

An arbitrary code execution vulnerability, which could be exploited while users viewed a maliciously crafted movie file, was also plugged.

Get daily email updates

SC Media's daily must-read of the most current and pressing daily news

By clicking the Subscribe button below, you agree to SC Media Terms and Conditions and Privacy Policy.