Apple iTunes Malformed Music File Heap Buffer Overflow Vulnerability

Bugtraq ID:	25567
Class:	Boundary Condition Error
CVE:	CVE-2007-3752
Remote:	Yes
Local:	No
Published:	Sep 05 2007 12:00AM
Updated:	Sep 07 2007 09:51PM
Credit:	David Thiel of iSEC Partners is credited with the discovery of this vulnerability.
Vulnerable:	eSignal eSignal 6.0.2 Apple iTunes 7.3.2 Apple iTunes 7.3.1 Apple iTunes 7.3 Apple iTunes 7.0.2 Apple iTunes 6.0.5 Apple iTunes 6.0.4 Apple iTunes 6.0.3 Apple iTunes 6.0.1 Apple iTunes 6.0 Apple iTunes 5.0 Apple iTunes 4.8 Apple iTunes 4.7.1 Apple iTunes 4.7 Apple iTunes 4.6 Apple iTunes 4.5

Not Vulnerable:	Apple iTunes 7.4