Vulnerability Description
Unspecified vulnerability in Apple iTunes before 9.1 allows local users to gain console privileges via vectors related to log files, "insecure file operation," and syncing an iPhone, iPad, or iPod touch.
CVSS Score
6.9
MEDIUM
AV:L/AC:M/Au:N/C:C/I:C/A:C
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Apple | Itunes | <= 9.0.3 |
References
- http://support.apple.com/kb/HT4105Vendor Advisory
- http://www.securityfocus.com/bid/42538
- https://exchange.xforce.ibmcloud.com/vulnerabilities/61222
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3
- http://support.apple.com/kb/HT4105Vendor Advisory
- http://www.securityfocus.com/bid/42538
- https://exchange.xforce.ibmcloud.com/vulnerabilities/61222
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3
FAQ
What is CVE-2010-1768?
CVE-2010-1768 is a vulnerability with a CVSS score of 6.9 (MEDIUM). Unspecified vulnerability in Apple iTunes before 9.1 allows local users to gain console privileges via vectors related to log files, "insecure file operation," and syncing an iPhone, iPad, or iPod tou...
How severe is CVE-2010-1768?
CVE-2010-1768 has been rated MEDIUM with a CVSS base score of 6.9/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2010-1768?
Check the references section above for vendor advisories and patch information. Affected products include: Apple Itunes.