What is the severity of CVE-2011-0148?

CVE-2011-0148 has a high severity rating due to the potential for arbitrary code execution by attackers.

How do I fix CVE-2011-0148?

To fix CVE-2011-0148, upgrade to Apple iTunes version 10.2 or later.

Which versions of iTunes are affected by CVE-2011-0148?

CVE-2011-0148 affects Apple iTunes versions prior to 10.2, specifically versions 10.1.2 and earlier.

What types of attacks can exploit CVE-2011-0148?

CVE-2011-0148 can be exploited through man-in-the-middle attacks during iTunes Store browsing.

Does CVE-2011-0148 affect any specific operating systems?

CVE-2011-0148 specifically affects Apple iTunes running on Windows operating systems.

Vulnerability/
CVE-2011-0148

high

7.6

CWE

119

3/3/2011

6/8/2024

CVE-2011-0148: Buffer Overflow

First published: Thu Mar 03 2011(Updated: )

WebKit, as used in Apple iTunes before 10.2 on Windows, allows man-in-the-middle attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via vectors related to iTunes Store browsing, a different vulnerability than other CVEs listed in APPLE-SA-2011-03-02-1.

Credit: product-security@apple.com

Affected Software	Affected Version	How to fix
Apple iTunes for Windows	<=10.1.2
Apple iTunes for Windows	=4.0.0
Apple iTunes for Windows	=4.0.1
Apple iTunes for Windows	=4.1.0
Apple iTunes for Windows	=4.2.0
Apple iTunes for Windows	=4.5
Apple iTunes for Windows	=4.5.0
Apple iTunes for Windows	=4.6
Apple iTunes for Windows	=4.6.0
Apple iTunes for Windows	=4.7
Apple iTunes for Windows	=4.7.0
Apple iTunes for Windows	=4.7.1
Apple iTunes for Windows	=4.7.2
Apple iTunes for Windows	=4.8.0
Apple iTunes for Windows	=4.9.0
Apple iTunes for Windows	=5.0
Apple iTunes for Windows	=5.0.0
Apple iTunes for Windows	=5.0.1
Apple iTunes for Windows	=6.0.0
Apple iTunes for Windows	=6.0.1
Apple iTunes for Windows	=6.0.2
Apple iTunes for Windows	=6.0.3
Apple iTunes for Windows	=6.0.4
Apple iTunes for Windows	=6.0.4.2
Apple iTunes for Windows	=6.0.5
Apple iTunes for Windows	=7.0.0
Apple iTunes for Windows	=7.0.1
Apple iTunes for Windows	=7.0.2
Apple iTunes for Windows	=7.1.0
Apple iTunes for Windows	=7.1.1
Apple iTunes for Windows	=7.2.0
Apple iTunes for Windows	=7.3.0
Apple iTunes for Windows	=7.3.1
Apple iTunes for Windows	=7.3.2
Apple iTunes for Windows	=7.4
Apple iTunes for Windows	=7.4.0
Apple iTunes for Windows	=7.4.1
Apple iTunes for Windows	=7.4.2
Apple iTunes for Windows	=7.4.3
Apple iTunes for Windows	=7.5
Apple iTunes for Windows	=7.5.0
Apple iTunes for Windows	=7.6
Apple iTunes for Windows	=7.6.0
Apple iTunes for Windows	=7.6.1
Apple iTunes for Windows	=7.6.2
Apple iTunes for Windows	=7.7
Apple iTunes for Windows	=7.7.0
Apple iTunes for Windows	=7.7.1
Apple iTunes for Windows	=8.0.0
Apple iTunes for Windows	=8.0.1
Apple iTunes for Windows	=8.0.2
Apple iTunes for Windows	=8.1
Apple iTunes for Windows	=8.1.1
Apple iTunes for Windows	=8.2
Apple iTunes for Windows	=8.2.1
Apple iTunes for Windows	=9.0.0
Apple iTunes for Windows	=9.0.1
Apple iTunes for Windows	=9.0.2
Apple iTunes for Windows	=9.0.3
Apple iTunes for Windows	=9.2
Apple iTunes for Windows	=9.2.1
Apple iTunes for Windows	=10.0
Apple iTunes for Windows	=10.0.1
Apple iTunes for Windows	=10.1
Apple iTunes for Windows	=10.1.1
Apple WebKit
Microsoft Windows
Microsoft Windows 7
Microsoft Windows Vista
Microsoft Windows Vista	=sp1
Microsoft Windows Vista	=sp2
Microsoft Windows XP	=sp2
Microsoft Windows XP	=sp3

Remedy

http://lists.apple.com/archives/security-announce/2011/Mar/msg00000.html

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2011-0148?
CVE-2011-0148 has a high severity rating due to the potential for arbitrary code execution by attackers.
How do I fix CVE-2011-0148?
To fix CVE-2011-0148, upgrade to Apple iTunes version 10.2 or later.
Which versions of iTunes are affected by CVE-2011-0148?
CVE-2011-0148 affects Apple iTunes versions prior to 10.2, specifically versions 10.1.2 and earlier.
What types of attacks can exploit CVE-2011-0148?
CVE-2011-0148 can be exploited through man-in-the-middle attacks during iTunes Store browsing.
Does CVE-2011-0148 affect any specific operating systems?
CVE-2011-0148 specifically affects Apple iTunes running on Windows operating systems.

collector/nvd-historical
agent/type
agent/softwarecombine
collector/mitre-cve
source/MITRE
agent/references
agent/author
agent/weakness
agent/severity
agent/remedy
agent/last-modified-date
agent/description
agent/first-publish-date
agent/event
agent/source
agent/tags
collector/nvd-index
agent/software-canonical-lookup-request
vendor/apple
canonical/apple itunes for windows
version/apple itunes for windows/10.1.2
version/apple itunes for windows/4.0.0
version/apple itunes for windows/4.0.1
version/apple itunes for windows/4.1.0
version/apple itunes for windows/4.2.0
version/apple itunes for windows/4.5
version/apple itunes for windows/4.5.0
version/apple itunes for windows/4.6
version/apple itunes for windows/4.6.0
version/apple itunes for windows/4.7
version/apple itunes for windows/4.7.0
version/apple itunes for windows/4.7.1
version/apple itunes for windows/4.7.2
version/apple itunes for windows/4.8.0
version/apple itunes for windows/4.9.0
version/apple itunes for windows/5.0
version/apple itunes for windows/5.0.0
version/apple itunes for windows/5.0.1
version/apple itunes for windows/6.0.0
version/apple itunes for windows/6.0.1
version/apple itunes for windows/6.0.2
version/apple itunes for windows/6.0.3
version/apple itunes for windows/6.0.4
version/apple itunes for windows/6.0.4.2
version/apple itunes for windows/6.0.5
version/apple itunes for windows/7.0.0
version/apple itunes for windows/7.0.1
version/apple itunes for windows/7.0.2
version/apple itunes for windows/7.1.0
version/apple itunes for windows/7.1.1
version/apple itunes for windows/7.2.0
version/apple itunes for windows/7.3.0
version/apple itunes for windows/7.3.1
version/apple itunes for windows/7.3.2
version/apple itunes for windows/7.4
version/apple itunes for windows/7.4.0
version/apple itunes for windows/7.4.1
version/apple itunes for windows/7.4.2
version/apple itunes for windows/7.4.3
version/apple itunes for windows/7.5
version/apple itunes for windows/7.5.0
version/apple itunes for windows/7.6
version/apple itunes for windows/7.6.0
version/apple itunes for windows/7.6.1
version/apple itunes for windows/7.6.2
version/apple itunes for windows/7.7
version/apple itunes for windows/7.7.0
version/apple itunes for windows/7.7.1
version/apple itunes for windows/8.0.0
version/apple itunes for windows/8.0.1
version/apple itunes for windows/8.0.2
version/apple itunes for windows/8.1
version/apple itunes for windows/8.1.1
version/apple itunes for windows/8.2
version/apple itunes for windows/8.2.1
version/apple itunes for windows/9.0.0
version/apple itunes for windows/9.0.1
version/apple itunes for windows/9.0.2
version/apple itunes for windows/9.0.3
version/apple itunes for windows/9.2
version/apple itunes for windows/9.2.1
version/apple itunes for windows/10.0
version/apple itunes for windows/10.0.1
version/apple itunes for windows/10.1
version/apple itunes for windows/10.1.1
canonical/apple webkit
vendor/microsoft
canonical/microsoft windows
canonical/microsoft windows 7
canonical/microsoft windows vista
version/microsoft windows vista/sp1
version/microsoft windows vista/sp2
canonical/microsoft windows xp
version/microsoft windows xp/sp2
version/microsoft windows xp/sp3

CVE-2011-0148: Buffer Overflow

Remedy

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2011-0148?

How do I fix CVE-2011-0148?

Which versions of iTunes are affected by CVE-2011-0148?

What types of attacks can exploit CVE-2011-0148?

Does CVE-2011-0148 affect any specific operating systems?

Company

Resources

Contact

Frequently Asked Questions

What is the severity of CVE-2011-0148?

How do I fix CVE-2011-0148?

Which versions of iTunes are affected by CVE-2011-0148?

What types of attacks can exploit CVE-2011-0148?

Does CVE-2011-0148 affect any specific operating systems?