| Revision Date: | 2015-06-22 | Version: | 19 |
| Title: | Apple Safari BMP Image Uninitialized Memory Information Disclosure Vulnerability |
| Description: | ImageIO in Apple Safari before 4.0.5 and iTunes before 9.1 on Windows does not ensure that memory access is associated with initialized memory, which allows remote attackers to obtain potentially sensitive information from process memory via a crafted BMP image. |
| Family: | windows | Class: | vulnerability |
| Status: | ACCEPTED | Reference(s): | CVE-2010-0041
|
| Platform(s): | Microsoft Windows 2000
Microsoft Windows 7
Microsoft Windows 8
Microsoft Windows Server 2003
Microsoft Windows Server 2008
Microsoft Windows Server 2008 R2
Microsoft Windows Server 2012
Microsoft Windows Vista
Microsoft Windows XP
| Product(s): | Apple iTunes
Apple Safari
|
| Definition Synopsis |
| Check iTunes Apple iTunes is installed
AND iTunes.exe version is less than 9.1.0.79
OR Check Safari
Apple Safari is installed
AND Apple Safari version is less than 5.31.22.7
|