What is the severity of CVE-2011-0117?

CVE-2011-0117 is classified as a high severity vulnerability due to its potential to allow remote code execution or denial of service.

How do I fix CVE-2011-0117?

To fix CVE-2011-0117, users should update Apple iTunes to version 10.2 or later.

What software versions are affected by CVE-2011-0117?

CVE-2011-0117 affects multiple versions of Apple iTunes prior to 10.2.

Is CVE-2011-0117 related to any other vulnerabilities?

Yes, CVE-2011-0117 is a different vulnerability than other CVEs listed in APPLE-SA-2011-.

Vulnerability/
CVE-2011-0117

high

7.6

CWE

119

3/3/2011

6/8/2024

CVE-2011-0117: Buffer Overflow

Q: What type of attack does CVE-2011-0117 enable?

CVE-2011-0117 allows man-in-the-middle attackers to execute arbitrary code.

First published: Thu Mar 03 2011(Updated: )

WebKit, as used in Apple iTunes before 10.2 on Windows, allows man-in-the-middle attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via vectors related to iTunes Store browsing, a different vulnerability than other CVEs listed in APPLE-SA-2011-03-02-1.

Credit: product-security@apple.com

Affected Software	Affected Version	How to fix
Apple iTunes for Windows	<=10.1.2
Apple iTunes for Windows	=4.0.0
Apple iTunes for Windows	=4.0.1
Apple iTunes for Windows	=4.1.0
Apple iTunes for Windows	=4.2.0
Apple iTunes for Windows	=4.5
Apple iTunes for Windows	=4.5.0
Apple iTunes for Windows	=4.6
Apple iTunes for Windows	=4.6.0
Apple iTunes for Windows	=4.7
Apple iTunes for Windows	=4.7.0
Apple iTunes for Windows	=4.7.1
Apple iTunes for Windows	=4.7.2
Apple iTunes for Windows	=4.8.0
Apple iTunes for Windows	=4.9.0
Apple iTunes for Windows	=5.0
Apple iTunes for Windows	=5.0.0
Apple iTunes for Windows	=5.0.1
Apple iTunes for Windows	=6.0.0
Apple iTunes for Windows	=6.0.1
Apple iTunes for Windows	=6.0.2
Apple iTunes for Windows	=6.0.3
Apple iTunes for Windows	=6.0.4
Apple iTunes for Windows	=6.0.4.2
Apple iTunes for Windows	=6.0.5
Apple iTunes for Windows	=7.0.0
Apple iTunes for Windows	=7.0.1
Apple iTunes for Windows	=7.0.2
Apple iTunes for Windows	=7.1.0
Apple iTunes for Windows	=7.1.1
Apple iTunes for Windows	=7.2.0
Apple iTunes for Windows	=7.3.0
Apple iTunes for Windows	=7.3.1
Apple iTunes for Windows	=7.3.2
Apple iTunes for Windows	=7.4
Apple iTunes for Windows	=7.4.0
Apple iTunes for Windows	=7.4.1
Apple iTunes for Windows	=7.4.2
Apple iTunes for Windows	=7.4.3
Apple iTunes for Windows	=7.5
Apple iTunes for Windows	=7.5.0
Apple iTunes for Windows	=7.6
Apple iTunes for Windows	=7.6.0
Apple iTunes for Windows	=7.6.1
Apple iTunes for Windows	=7.6.2
Apple iTunes for Windows	=7.7
Apple iTunes for Windows	=7.7.0
Apple iTunes for Windows	=7.7.1
Apple iTunes for Windows	=8.0.0
Apple iTunes for Windows	=8.0.1
Apple iTunes for Windows	=8.0.2
Apple iTunes for Windows	=8.1
Apple iTunes for Windows	=8.1.1
Apple iTunes for Windows	=8.2
Apple iTunes for Windows	=8.2.1
Apple iTunes for Windows	=9.0.0
Apple iTunes for Windows	=9.0.1
Apple iTunes for Windows	=9.0.2
Apple iTunes for Windows	=9.0.3
Apple iTunes for Windows	=9.2
Apple iTunes for Windows	=9.2.1
Apple iTunes for Windows	=10.0
Apple iTunes for Windows	=10.0.1
Apple iTunes for Windows	=10.1
Apple iTunes for Windows	=10.1.1
Apple WebKit
Microsoft Windows
Microsoft Windows 7
Microsoft Windows Vista
Microsoft Windows Vista	=sp1
Microsoft Windows Vista	=sp2
Microsoft Windows XP	=sp2
Microsoft Windows XP	=sp3

Remedy

http://lists.apple.com/archives/security-announce/2011/Mar/msg00000.html

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2011-0117?
CVE-2011-0117 is classified as a high severity vulnerability due to its potential to allow remote code execution or denial of service.
How do I fix CVE-2011-0117?
To fix CVE-2011-0117, users should update Apple iTunes to version 10.2 or later.
What software versions are affected by CVE-2011-0117?
CVE-2011-0117 affects multiple versions of Apple iTunes prior to 10.2.
What type of attack does CVE-2011-0117 enable?
CVE-2011-0117 allows man-in-the-middle attackers to execute arbitrary code.
Is CVE-2011-0117 related to any other vulnerabilities?
Yes, CVE-2011-0117 is a different vulnerability than other CVEs listed in APPLE-SA-2011-.

collector/nvd-historical
agent/type
agent/softwarecombine
collector/mitre-cve
source/MITRE
agent/weakness
agent/last-modified-date
agent/remedy
agent/author
agent/references
agent/severity
agent/description
agent/event
agent/first-publish-date
agent/source
agent/tags
collector/nvd-index
agent/software-canonical-lookup-request
vendor/apple
canonical/apple itunes for windows
version/apple itunes for windows/10.1.2
version/apple itunes for windows/4.0.0
version/apple itunes for windows/4.0.1
version/apple itunes for windows/4.1.0
version/apple itunes for windows/4.2.0
version/apple itunes for windows/4.5
version/apple itunes for windows/4.5.0
version/apple itunes for windows/4.6
version/apple itunes for windows/4.6.0
version/apple itunes for windows/4.7
version/apple itunes for windows/4.7.0
version/apple itunes for windows/4.7.1
version/apple itunes for windows/4.7.2
version/apple itunes for windows/4.8.0
version/apple itunes for windows/4.9.0
version/apple itunes for windows/5.0
version/apple itunes for windows/5.0.0
version/apple itunes for windows/5.0.1
version/apple itunes for windows/6.0.0
version/apple itunes for windows/6.0.1
version/apple itunes for windows/6.0.2
version/apple itunes for windows/6.0.3
version/apple itunes for windows/6.0.4
version/apple itunes for windows/6.0.4.2
version/apple itunes for windows/6.0.5
version/apple itunes for windows/7.0.0
version/apple itunes for windows/7.0.1
version/apple itunes for windows/7.0.2
version/apple itunes for windows/7.1.0
version/apple itunes for windows/7.1.1
version/apple itunes for windows/7.2.0
version/apple itunes for windows/7.3.0
version/apple itunes for windows/7.3.1
version/apple itunes for windows/7.3.2
version/apple itunes for windows/7.4
version/apple itunes for windows/7.4.0
version/apple itunes for windows/7.4.1
version/apple itunes for windows/7.4.2
version/apple itunes for windows/7.4.3
version/apple itunes for windows/7.5
version/apple itunes for windows/7.5.0
version/apple itunes for windows/7.6
version/apple itunes for windows/7.6.0
version/apple itunes for windows/7.6.1
version/apple itunes for windows/7.6.2
version/apple itunes for windows/7.7
version/apple itunes for windows/7.7.0
version/apple itunes for windows/7.7.1
version/apple itunes for windows/8.0.0
version/apple itunes for windows/8.0.1
version/apple itunes for windows/8.0.2
version/apple itunes for windows/8.1
version/apple itunes for windows/8.1.1
version/apple itunes for windows/8.2
version/apple itunes for windows/8.2.1
version/apple itunes for windows/9.0.0
version/apple itunes for windows/9.0.1
version/apple itunes for windows/9.0.2
version/apple itunes for windows/9.0.3
version/apple itunes for windows/9.2
version/apple itunes for windows/9.2.1
version/apple itunes for windows/10.0
version/apple itunes for windows/10.0.1
version/apple itunes for windows/10.1
version/apple itunes for windows/10.1.1
canonical/apple webkit
vendor/microsoft
canonical/microsoft windows
canonical/microsoft windows 7
canonical/microsoft windows vista
version/microsoft windows vista/sp1
version/microsoft windows vista/sp2
canonical/microsoft windows xp
version/microsoft windows xp/sp2
version/microsoft windows xp/sp3

CVE-2011-0117: Buffer Overflow

Remedy

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2011-0117?

How do I fix CVE-2011-0117?

What software versions are affected by CVE-2011-0117?

What type of attack does CVE-2011-0117 enable?

Is CVE-2011-0117 related to any other vulnerabilities?

Company

Resources

Contact