FKIE_CVE-2010-1769

Vulnerability from fkie_nvd - Published: 2010-06-18 16:30 - Updated: 2025-04-11 00:51
Severity ?
Summary
WebKit in Apple iTunes before 9.2 on Windows, and Apple iOS before 4 on the iPhone and iPod touch, accesses out-of-bounds memory during the handling of tables, which allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted HTML document, a different vulnerability than CVE-2010-1387 and CVE-2010-1763.
References
product-security@apple.comhttp://lists.apple.com/archives/security-announce/2010//Jun/msg00002.html
product-security@apple.comhttp://lists.apple.com/archives/security-announce/2010/Jun/msg00003.html
product-security@apple.comhttp://lists.opensuse.org/opensuse-security-announce/2011-01/msg00006.html
product-security@apple.comhttp://secunia.com/advisories/40196
product-security@apple.comhttp://secunia.com/advisories/43068
product-security@apple.comhttp://securitytracker.com/id?1024108
product-security@apple.comhttp://support.apple.com/kb/HT4220
product-security@apple.comhttp://support.apple.com/kb/HT4225
product-security@apple.comhttp://www.securityfocus.com/bid/41016
product-security@apple.comhttp://www.vupen.com/english/advisories/2010/1512
product-security@apple.comhttp://www.vupen.com/english/advisories/2011/0212
product-security@apple.comhttps://exchange.xforce.ibmcloud.com/vulnerabilities/59508
product-security@apple.comhttps://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7178
af854a3a-2127-422b-91ae-364da2661108http://lists.apple.com/archives/security-announce/2010//Jun/msg00002.html
af854a3a-2127-422b-91ae-364da2661108http://lists.apple.com/archives/security-announce/2010/Jun/msg00003.html
af854a3a-2127-422b-91ae-364da2661108http://lists.opensuse.org/opensuse-security-announce/2011-01/msg00006.html
af854a3a-2127-422b-91ae-364da2661108http://secunia.com/advisories/40196
af854a3a-2127-422b-91ae-364da2661108http://secunia.com/advisories/43068
af854a3a-2127-422b-91ae-364da2661108http://securitytracker.com/id?1024108
af854a3a-2127-422b-91ae-364da2661108http://support.apple.com/kb/HT4220
af854a3a-2127-422b-91ae-364da2661108http://support.apple.com/kb/HT4225
af854a3a-2127-422b-91ae-364da2661108http://www.securityfocus.com/bid/41016
af854a3a-2127-422b-91ae-364da2661108http://www.vupen.com/english/advisories/2010/1512
af854a3a-2127-422b-91ae-364da2661108http://www.vupen.com/english/advisories/2011/0212
af854a3a-2127-422b-91ae-364da2661108https://exchange.xforce.ibmcloud.com/vulnerabilities/59508
af854a3a-2127-422b-91ae-364da2661108https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7178
Impacted products
Vendor Product Version
apple itunes *
apple itunes 7.0.0
apple itunes 7.0.1
apple itunes 7.0.2
apple itunes 7.0.2
apple itunes 7.1.0
apple itunes 7.1.1
apple itunes 7.2.0
apple itunes 7.3.0
apple itunes 7.3.1
apple itunes 7.3.2
apple itunes 7.3.2
apple itunes 7.4
apple itunes 7.4.0
apple itunes 7.4.1
apple itunes 7.4.1
apple itunes 7.4.2
apple itunes 7.4.2
apple itunes 7.4.3
apple itunes 7.5
apple itunes 7.5.0
apple itunes 7.6
apple itunes 7.6.0
apple itunes 7.6.1
apple itunes 7.6.1
apple itunes 7.6.2
apple itunes 7.6.2
apple itunes 7.7
apple itunes 7.7.0
apple itunes 7.7.1
apple itunes 7.7.1
apple itunes 8.0
apple itunes 8.0.0
apple itunes 8.0.0
apple itunes 8.0.1
apple itunes 8.0.2
apple itunes 8.1
apple itunes 8.1.1
apple itunes 8.2
apple itunes 8.2.1
apple itunes 9.0
apple itunes 9.0.0
apple itunes 9.0.1
apple itunes 9.0.2
apple itunes 9.0.3
apple itunes 9.1
microsoft windows_7 *
microsoft windows_vista *
microsoft windows_xp *
To clipboard 

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:apple:itunes:*:-:windows:*:*:*:*:*",
              "matchCriteriaId": "53B144F9-1B26-4F73-AAD3-501275D932DD",
              "versionEndIncluding": "9.1.1",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:apple:itunes:7.0.0:-:windows:*:*:*:*:*",
              "matchCriteriaId": "C5B51908-CB81-492D-A437-D0508ABE05FE",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:apple:itunes:7.0.1:-:windows:*:*:*:*:*",
              "matchCriteriaId": "0E826E91-CBBF-48D8-A4AD-7FB6830F3769",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:apple:itunes:7.0.2:*:windows:*:*:*:*:*",
              "matchCriteriaId": "2690D789-B1DC-40A5-8CC6-BBB499E9A550",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:apple:itunes:7.0.2:-:windows:*:*:*:*:*",
              "matchCriteriaId": "066FC8C7-5A0B-4B2E-A51E-BFB42153FD21",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:apple:itunes:7.1.0:-:windows:*:*:*:*:*",
              "matchCriteriaId": "0D2412E1-745B-4CFC-B075-1960A1410335",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:apple:itunes:7.1.1:-:windows:*:*:*:*:*",
              "matchCriteriaId": "45F36172-97A7-4767-BC9E-8DC0444A8635",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:apple:itunes:7.2.0:-:windows:*:*:*:*:*",
              "matchCriteriaId": "D0D889C7-320C-4674-834F-93C8B1701EAA",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:apple:itunes:7.3.0:-:windows:*:*:*:*:*",
              "matchCriteriaId": "23B4660B-D22B-4AC5-B6F2-87F83A2251A3",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:apple:itunes:7.3.1:-:windows:*:*:*:*:*",
              "matchCriteriaId": "7F61B45F-86CA-43F6-BA12-62AB0FBAD352",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:apple:itunes:7.3.2:*:windows:*:*:*:*:*",
              "matchCriteriaId": "BC37C091-02B8-4B39-9253-52C1008ADEC6",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:apple:itunes:7.3.2:-:windows:*:*:*:*:*",
              "matchCriteriaId": "9F7D1E31-E28F-4EAD-AAE5-01AE478003B8",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:apple:itunes:7.4:*:windows:*:*:*:*:*",
              "matchCriteriaId": "70A4EEE2-1DD2-4936-8939-4683523670B9",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:apple:itunes:7.4.0:-:windows:*:*:*:*:*",
              "matchCriteriaId": "91FB2868-DDF9-4D33-B78C-2A5180F9D260",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:apple:itunes:7.4.1:*:windows:*:*:*:*:*",
              "matchCriteriaId": "95B58CD1-03CB-4C35-A290-7157941D210D",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:apple:itunes:7.4.1:-:windows:*:*:*:*:*",
              "matchCriteriaId": "AEEC5C0E-DDC5-4B28-8C04-DF69C152E1AE",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:apple:itunes:7.4.2:*:windows:*:*:*:*:*",
              "matchCriteriaId": "A27B736F-317F-4538-AA3B-72D6EF0D2D33",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:apple:itunes:7.4.2:-:windows:*:*:*:*:*",
              "matchCriteriaId": "2F688163-C543-4D58-BF71-DF50FFB0A112",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:apple:itunes:7.4.3:*:windows:*:*:*:*:*",
              "matchCriteriaId": "481E736B-0A83-4422-B1D3-4BD0F9565A18",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:apple:itunes:7.5:*:windows:*:*:*:*:*",
              "matchCriteriaId": "3BB09ABD-C1F1-4101-BDC2-FC3E8C422631",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:apple:itunes:7.5.0:-:windows:*:*:*:*:*",
              "matchCriteriaId": "0C0CB6DE-46C4-4F9D-B8FD-47C01922D2D4",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:apple:itunes:7.6:*:windows:*:*:*:*:*",
              "matchCriteriaId": "A7448F89-CC4A-4B18-887F-B47C0B57404C",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:apple:itunes:7.6.0:-:windows:*:*:*:*:*",
              "matchCriteriaId": "040B2DB5-8F7D-4272-A0D1-2872B289B125",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:apple:itunes:7.6.1:*:windows:*:*:*:*:*",
              "matchCriteriaId": "4F173E7D-3EEC-4698-B0FE-5CCE6F990829",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:apple:itunes:7.6.1:-:windows:*:*:*:*:*",
              "matchCriteriaId": "1A957B0E-9A86-40D4-8A39-01895C32838A",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:apple:itunes:7.6.2:*:windows:*:*:*:*:*",
              "matchCriteriaId": "B2943C2E-0DDD-498A-9439-E9394CB06081",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:apple:itunes:7.6.2:-:windows:*:*:*:*:*",
              "matchCriteriaId": "0B7DBB76-5A86-42A3-8A0A-19D616357619",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:apple:itunes:7.7:*:windows:*:*:*:*:*",
              "matchCriteriaId": "D41DA19A-4403-40A8-A3DB-01A12FD4F267",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:apple:itunes:7.7.0:-:windows:*:*:*:*:*",
              "matchCriteriaId": "BC16747F-9F32-4186-9824-487163276EEE",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:apple:itunes:7.7.1:*:windows:*:*:*:*:*",
              "matchCriteriaId": "25E7EF0A-D79E-44E3-B0D4-3C6E8F6FD666",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:apple:itunes:7.7.1:-:windows:*:*:*:*:*",
              "matchCriteriaId": "F2043A3A-3578-42D8-AF54-7C8073CA0DB9",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:apple:itunes:8.0:-:windows:*:*:*:*:*",
              "matchCriteriaId": "8524DF4C-9607-42A9-92DF-815F501C2133",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:apple:itunes:8.0.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "A02D076B-5900-401D-9B47-5136B9CEAA15",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:apple:itunes:8.0.0:-:windows:*:*:*:*:*",
              "matchCriteriaId": "E7A71D45-7715-4B1A-BC64-6F6287A324FB",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:apple:itunes:8.0.1:-:windows:*:*:*:*:*",
              "matchCriteriaId": "17517493-027E-4844-85DD-D8ABCDEB1BBB",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:apple:itunes:8.0.2:-:windows:*:*:*:*:*",
              "matchCriteriaId": "5A653FFB-16BF-439D-A03A-1C9FB6B6AB16",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:apple:itunes:8.1:-:windows:*:*:*:*:*",
              "matchCriteriaId": "891B1042-2F02-4D3A-9F2E-2567B2C0A63C",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:apple:itunes:8.1.1:-:windows:*:*:*:*:*",
              "matchCriteriaId": "36690CCC-AA84-4328-9BA5-F26556B1EBE5",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:apple:itunes:8.2:-:windows:*:*:*:*:*",
              "matchCriteriaId": "9CAB77AB-531A-43DD-8353-598941AC4128",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:apple:itunes:8.2.1:-:windows:*:*:*:*:*",
              "matchCriteriaId": "031526F9-4D73-4D0D-90A1-ED6D6B3CA467",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:apple:itunes:9.0:-:windows:*:*:*:*:*",
              "matchCriteriaId": "B1E809C8-4212-4C32-B3C9-314859CE04EB",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:apple:itunes:9.0.0:-:windows:*:*:*:*:*",
              "matchCriteriaId": "F517459A-E3CD-4BBC-A38B-C83B0E761939",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:apple:itunes:9.0.1:-:windows:*:*:*:*:*",
              "matchCriteriaId": "F3A1B79A-D89C-416B-9AC6-17E2DC543FDD",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:apple:itunes:9.0.2:-:windows:*:*:*:*:*",
              "matchCriteriaId": "90B7F3C0-3266-4611-92D9-E39CD6970641",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:apple:itunes:9.0.3:-:windows:*:*:*:*:*",
              "matchCriteriaId": "29D70813-38DE-415F-A2C6-08C867B2D726",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:apple:itunes:9.1:-:windows:*:*:*:*:*",
              "matchCriteriaId": "26607BCA-9E12-435C-90DF-7859D2772F28",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:microsoft:windows_7:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "D56B932B-9593-44E2-B610-E4EB2143EB21",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:o:microsoft:windows_vista:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "3852BB02-47A1-40B3-8E32-8D8891A53114",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:o:microsoft:windows_xp:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "E61F1C9B-44AF-4B35-A7B2-948EEF7639BD",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "WebKit in Apple iTunes before 9.2 on Windows, and Apple iOS before 4 on the iPhone and iPod touch, accesses out-of-bounds memory during the handling of tables, which allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted HTML document, a different vulnerability than CVE-2010-1387 and CVE-2010-1763."
    },
    {
      "lang": "es",
      "value": "Vulnerabilidad no especificada en WebKit en Apple iTunes anteriores a v9.2 en Windows, tiene un impacto y vectores de ataque desconocidos, es una vulnerabilidad diferente a CVE-2010-1387 y  CVE-2010-1763."
    }
  ],
  "id": "CVE-2010-1769",
  "lastModified": "2025-04-11T00:51:21.963",
  "metrics": {
    "cvssMetricV2": [
      {
        "acInsufInfo": true,
        "baseSeverity": "HIGH",
        "cvssData": {
          "accessComplexity": "LOW",
          "accessVector": "NETWORK",
          "authentication": "NONE",
          "availabilityImpact": "COMPLETE",
          "baseScore": 10.0,
          "confidentialityImpact": "COMPLETE",
          "integrityImpact": "COMPLETE",
          "vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C",
          "version": "2.0"
        },
        "exploitabilityScore": 10.0,
        "impactScore": 10.0,
        "obtainAllPrivilege": false,
        "obtainOtherPrivilege": false,
        "obtainUserPrivilege": false,
        "source": "nvd@nist.gov",
        "type": "Primary",
        "userInteractionRequired": false
      }
    ]
  },
  "published": "2010-06-18T16:30:01.453",
  "references": [
    {
      "source": "product-security@apple.com",
      "url": "http://lists.apple.com/archives/security-announce/2010//Jun/msg00002.html"
    },
    {
      "source": "product-security@apple.com",
      "url": "http://lists.apple.com/archives/security-announce/2010/Jun/msg00003.html"
    },
    {
      "source": "product-security@apple.com",
      "url": "http://lists.opensuse.org/opensuse-security-announce/2011-01/msg00006.html"
    },
    {
      "source": "product-security@apple.com",
      "url": "http://secunia.com/advisories/40196"
    },
    {
      "source": "product-security@apple.com",
      "url": "http://secunia.com/advisories/43068"
    },
    {
      "source": "product-security@apple.com",
      "url": "http://securitytracker.com/id?1024108"
    },
    {
      "source": "product-security@apple.com",
      "url": "http://support.apple.com/kb/HT4220"
    },
    {
      "source": "product-security@apple.com",
      "url": "http://support.apple.com/kb/HT4225"
    },
    {
      "source": "product-security@apple.com",
      "url": "http://www.securityfocus.com/bid/41016"
    },
    {
      "source": "product-security@apple.com",
      "url": "http://www.vupen.com/english/advisories/2010/1512"
    },
    {
      "source": "product-security@apple.com",
      "url": "http://www.vupen.com/english/advisories/2011/0212"
    },
    {
      "source": "product-security@apple.com",
      "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/59508"
    },
    {
      "source": "product-security@apple.com",
      "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7178"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://lists.apple.com/archives/security-announce/2010//Jun/msg00002.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://lists.apple.com/archives/security-announce/2010/Jun/msg00003.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://lists.opensuse.org/opensuse-security-announce/2011-01/msg00006.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://secunia.com/advisories/40196"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://secunia.com/advisories/43068"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://securitytracker.com/id?1024108"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://support.apple.com/kb/HT4220"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://support.apple.com/kb/HT4225"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.securityfocus.com/bid/41016"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.vupen.com/english/advisories/2010/1512"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.vupen.com/english/advisories/2011/0212"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/59508"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7178"
    }
  ],
  "sourceIdentifier": "product-security@apple.com",
  "vulnStatus": "Deferred",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "NVD-CWE-noinfo"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}


Log in or create an account to share your comment.




Tags
Taxonomy of the tags.




Sightings

Author Source Type Date

Nomenclature

  • Seen: The vulnerability was mentioned, discussed, or observed by the user.
  • Confirmed: The vulnerability has been validated from an analyst's perspective.
  • Published Proof of Concept: A public proof of concept is available for this vulnerability.
  • Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
  • Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
  • Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
  • Not confirmed: The user expressed doubt about the validity of the vulnerability.
  • Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.



Detection rules are retrieved from Rulezet.