Buffer Overflow Vulnerability in CoreAudio Allows Remote Code Execution in Apple iTunes

Buffer Overflow Vulnerability in CoreAudio Allows Remote Code Execution in Apple iTunes

CVE-2011-3252 · HIGH Severity

AV:N/AC:M/AU:N/C:C/I:C/A:C

Buffer overflow in CoreAudio, as used in Apple iTunes before 10.5, allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted Advanced Audio Coding (AAC) stream.

Learn more about our Web Application Penetration Testing UK.