Vulnerability CVE-2010-1795 - CERT Civis.Net

Vulnerability Name:

CVE-2010-1795 (CCN-61223)

Assigned:

2010-06-12

Published:

2010-06-12

Updated:

2018-10-10

Summary:

Untrusted search path vulnerability in Apple iTunes before 9.1, when running on Windows 7, Vista, and XP, allows local users and possibly remote attackers to gain privileges via a Trojan horse DLL in the current working directory.

CVSS v3 Severity:

10.0 Critical (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H)

Exploitability Metrics:	Attack Vector (AV): Network Attack Complexity (AC): Low Privileges Required (PR): None User Interaction (UI): None
Scope:	Scope (S): Changed
Impact Metrics:	Confidentiality (C): High Integrity (I): High Availibility (A): High

CVSS v2 Severity:

9.3 High (CVSS v2 Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C)
6.9 Medium (Temporal CVSS v2 Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C/E:U/RL:OF/RC:C)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Medium Authentication (Au): None
Impact Metrics:	Confidentiality (C): Complete Integrity (I): Complete Availibility (A): Complete

9.3 High (CCN CVSS v2 Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C)
6.9 Medium (CCN Temporal CVSS v2 Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C/E:U/RL:OF/RC:C)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Medium Athentication (Au): None
Impact Metrics:	Confidentiality (C): Complete Integrity (I): Complete Availibility (A): Complete

Vulnerability Type:

Vulnerability Consequences:

Gain Access

References:

Source: MITRE
Type: CNA
CVE-2010-1795

Source: CCN
Type: Apple Web site
About the security content of iTunes 9.1

Source: CONFIRM
Type: Vendor Advisory
http://support.apple.com/kb/HT4105

Source: MISC
Type: UNKNOWN
http://www.acrossecurity.com/aspr/ASPR-2010-08-18-1-PUB.txt

Source: CCN
Type: OSVDB ID: 67329
Apple iTunes for Windows Path Subversion Arbitrary DLL Injection Code Execution

Source: BUGTRAQ
Type: UNKNOWN
20100818 ACROS Security: Remote Binary Planting in Apple iTunes for Windows (ASPR #2010-08-18-1)

Source: BID
Type: UNKNOWN
42541

Source: CCN
Type: BID-42541
Apple iTunes DLL Loading Arbitrary Code Execution Vulnerability

Source: XF
Type: UNKNOWN
itunes-dll-code-execution(61223)

Source: XF
Type: UNKNOWN
itunes-dll-code-execution(61223)

Source: OVAL
Type: UNKNOWN
oval:org.mitre.oval:def:7217

Vulnerable Configuration:

Configuration 1:

cpe:/a:apple:itunes:1.0:-:windows:*:*:*:*:*

OR cpe:/a:apple:itunes:1.1.1:-:windows:*:*:*:*:*

OR cpe:/a:apple:itunes:1.1.2:-:windows:*:*:*:*:*

OR cpe:/a:apple:itunes:2.0.0:-:windows:*:*:*:*:*

OR cpe:/a:apple:itunes:2.0.1:-:windows:*:*:*:*:*

OR cpe:/a:apple:itunes:2.0.2:-:windows:*:*:*:*:*

OR cpe:/a:apple:itunes:2.0.3:-:windows:*:*:*:*:*

OR cpe:/a:apple:itunes:2.0.4:-:windows:*:*:*:*:*

OR cpe:/a:apple:itunes:3.0.0:-:windows:*:*:*:*:*

OR cpe:/a:apple:itunes:3.0.1:-:windows:*:*:*:*:*

OR cpe:/a:apple:itunes:4.0.0:-:windows:*:*:*:*:*

OR cpe:/a:apple:itunes:4.0.1:-:windows:*:*:*:*:*

OR cpe:/a:apple:itunes:4.1.0:-:windows:*:*:*:*:*

OR cpe:/a:apple:itunes:4.2.0:-:windows:*:*:*:*:*

OR cpe:/a:apple:itunes:4.5.0:-:windows:*:*:*:*:*

OR cpe:/a:apple:itunes:4.6.0:-:windows:*:*:*:*:*

OR cpe:/a:apple:itunes:4.7.0:-:windows:*:*:*:*:*

OR cpe:/a:apple:itunes:4.7.1:-:windows:*:*:*:*:*

OR cpe:/a:apple:itunes:4.8.0:-:windows:*:*:*:*:*

OR cpe:/a:apple:itunes:4.9.0:-:windows:*:*:*:*:*

OR cpe:/a:apple:itunes:5.0.0:-:windows:*:*:*:*:*

OR cpe:/a:apple:itunes:5.0.1:-:windows:*:*:*:*:*

OR cpe:/a:apple:itunes:6.0.0:-:windows:*:*:*:*:*

OR cpe:/a:apple:itunes:6.0.1:-:windows:*:*:*:*:*

OR cpe:/a:apple:itunes:6.0.2:-:windows:*:*:*:*:*

OR cpe:/a:apple:itunes:6.0.3:-:windows:*:*:*:*:*

OR cpe:/a:apple:itunes:6.0.4:-:windows:*:*:*:*:*

OR cpe:/a:apple:itunes:6.0.4.2:-:windows:*:*:*:*:*

OR cpe:/a:apple:itunes:6.0.5:-:windows:*:*:*:*:*

OR cpe:/a:apple:itunes:7.0.0:-:windows:*:*:*:*:*

OR cpe:/a:apple:itunes:7.0.1:-:windows:*:*:*:*:*

OR cpe:/a:apple:itunes:7.0.2:-:windows:*:*:*:*:*

OR cpe:/a:apple:itunes:7.1.0:-:windows:*:*:*:*:*

OR cpe:/a:apple:itunes:7.1.1:-:windows:*:*:*:*:*

OR cpe:/a:apple:itunes:7.2.0:-:windows:*:*:*:*:*

OR cpe:/a:apple:itunes:7.3.0:-:windows:*:*:*:*:*

OR cpe:/a:apple:itunes:7.3.1:-:windows:*:*:*:*:*

OR cpe:/a:apple:itunes:7.3.2:-:windows:*:*:*:*:*

OR cpe:/a:apple:itunes:7.4.0:-:windows:*:*:*:*:*

OR cpe:/a:apple:itunes:7.4.1:-:windows:*:*:*:*:*

OR cpe:/a:apple:itunes:7.4.2:-:windows:*:*:*:*:*

OR cpe:/a:apple:itunes:7.4.3:-:windows:*:*:*:*:*

OR cpe:/a:apple:itunes:7.5.0:-:windows:*:*:*:*:*

OR cpe:/a:apple:itunes:7.6.0:-:windows:*:*:*:*:*

OR cpe:/a:apple:itunes:7.6.1:-:windows:*:*:*:*:*

OR cpe:/a:apple:itunes:7.6.2:-:windows:*:*:*:*:*

OR cpe:/a:apple:itunes:7.7.0:-:windows:*:*:*:*:*

OR cpe:/a:apple:itunes:7.7.1:-:windows:*:*:*:*:*

OR cpe:/a:apple:itunes:8.0:-:windows:*:*:*:*:*

OR cpe:/a:apple:itunes:8.0.1:-:windows:*:*:*:*:*

OR cpe:/a:apple:itunes:8.0.2:-:windows:*:*:*:*:*

OR cpe:/a:apple:itunes:8.1:-:windows:*:*:*:*:*

OR cpe:/a:apple:itunes:8.1.1:-:windows:*:*:*:*:*

OR cpe:/a:apple:itunes:8.2:-:windows:*:*:*:*:*

OR cpe:/a:apple:itunes:8.2.1:-:windows:*:*:*:*:*

OR cpe:/a:apple:itunes:9.0.0:-:windows:*:*:*:*:*

OR cpe:/a:apple:itunes:9.0.1:-:windows:*:*:*:*:*

OR cpe:/a:apple:itunes:9.0.2:-:windows:*:*:*:*:*

OR cpe:/a:apple:itunes:9.0.3:-:windows:*:*:*:*:*

Configuration CCN 1:

cpe:/a:apple:itunes:7.0.2:*:*:*:*:*:*:*

OR cpe:/a:apple:itunes:7.3.2:*:*:*:*:*:*:*

OR cpe:/a:apple:itunes:7.3.1:*:*:*:*:*:*:*

OR cpe:/a:apple:itunes:7.3.0:-:mac:*:*:*:*:*

OR cpe:/a:apple:itunes:7.4:*:*:*:*:*:*:*

OR cpe:/a:apple:itunes:8.0:*:*:*:*:*:*:*

OR cpe:/a:apple:itunes:8.0.2.20:*:*:*:*:*:*:*

OR cpe:/a:apple:itunes:8.1:*:*:*:*:*:*:*

OR cpe:/a:apple:itunes:9.0.0:-:windows:*:*:*:*:*

Denotes that component is vulnerable

Oval Definitions

Definition ID	Class	Title	Last Modified
oval:org.mitre.oval:def:7217	V	Apple iTunes DLL Loading Arbitrary Code Execution Vulnerability	2015-06-22