[Winvulns-announcements] BES Auto Notification: New Fixlets Published in Fixlet Site: VulnerabilitiestoWindowsSystems
Notification of New Vulnerabilties to Windows Systems Fixlet Messages
winvulns-announcements at bigmail.bigfix.com
Thu Oct 15 05:20:05 PDT 2009
Fixlet Site - VulnerabilitiestoWindowsSystems
Current Version: 189 Published: Wed, 14 Oct 2009 22:44:12 GMT
New Fixlets:
============
***************************************************************
Title: Apple iTunes '.pls' File Buffer Overflow Vulnerability
Severity: High
Fixlet ID: 629001
Fixlet Link: http://oval.mitre.org/oval/definitions/data/oval6290.html
Fixlet Link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-2817
Fixlet Link: http://nvd.nist.gov/cvss.cfm?vectorinfo
Fixlet Description: Buffer overflow in Apple iTunes before 9.0.1 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted .pls file.
More information about the WinVulns-Announcements
mailing list