Oval Definition:	oval:org.mitre.oval:def:7217
Revision Date: 2015-06-22 Version: 18 Title: Apple iTunes DLL Loading Arbitrary Code Execution Vulnerability Description: Untrusted search path vulnerability in Apple iTunes before 9.1, when running on Windows 7, Vista, and XP, allows local users and possibly remote attackers to gain privileges via a Trojan horse DLL in the current working directory. Family: windows Class: vulnerability Status: ACCEPTED Reference(s): CVE-2010-1795 Platform(s): Microsoft Windows 2000 Microsoft Windows 7 Microsoft Windows Vista Microsoft Windows XP Product(s): Apple iTunes Definition Synopsis Affected operating system Microsoft Windows 2000 is installed OR Microsoft Windows XP (x86) SP2 is installed OR Microsoft Windows XP (x86) SP3 is installed OR Microsoft Windows Vista (32-bit) is installed OR Microsoft Windows Vista (32-bit) Service Pack 1 is installed OR Microsoft Windows 7 (32-bit) is installed AND Apple iTunes is installed AND iTunes.exe version is less than 9.1.0.79
BACK