iTunes users running Mac and Windows operating systems now have an update which addresses numerous bugs in the popular media player.
The majority of the bugs left users vulnerable to man-in-the-middle (MitM) attacks while they browsed the iTunes Store via the iTunes application. Through exploitation, saboteurs could unexpectedly terminate an application or execute malicious code.
The media player update also addressed flaws that could allow an attacker with a privileged network position to control the contents of the iTunes Tutorials window.
An arbitrary code execution vulnerability, which could be exploited while users viewed a maliciously crafted movie file, was also plugged.