Oval Definition:	oval:org.mitre.oval:tst:81615
Comment: iTunes.exe version is less than 10.5.1.42 Type: file_test Namespace: windows Check_Existence: at_least_one_exists Check: all State Operator: AND References Object: oval:org.mitre.oval:obj:6563 State: oval:org.mitre.oval:ste:21081 Referencing Definitions Definition ID Class Title Last Modified oval:org.mitre.oval:def:17136 V Apple iTunes before 10.5.1 does not properly verify the authenticity of updates, which allows man-in-the-middle attackers to execute arbitrary code via a Trojan horse update, as demonstrated by evilgrade and DNS cache poisoning 2015-06-22
BACK