Unquoted Windows search path vulnerability in iTunesHelper.exe in iTunes 4.7.1.30 and iTunes 5 for Windows might allow local users to gain privileges via a malicious C:\program.exe file.
References
Link | Resource |
---|---|
http://www.idefense.com/application/poi/display?id=340&type=vulnerabilities | Vendor Advisory |
http://securitytracker.com/id?1015222 | |
http://www.vupen.com/english/advisories/2005/2443 | Vendor Advisory |
Configurations
Configuration 1 (hide)
|
Information
Published : 2005-11-17 22:03
Updated : 2011-03-09 21:00
NVD link : CVE-2005-2938
Mitre link : CVE-2005-2938
JSON object : View
CWE
CWE-264
Permissions, Privileges, and Access Controls
Products Affected
apple
- itunes