Vulnerability in N/a
CVE-2005-0043
Buffer overflow in Apple iTunes 4.7 allows remote attackers to execute arbitrary code via a long URL in (1) .m3u or (2) .pls playlist files.
EPSS: 0.799 (99.1th percentile) — read the EPSS interpretation.
Affected products
- N/a — versions n/a
Public proof-of-concept exploits
References
- VU#377368 (x_refsource_CERT-VN, third-party-advisory)
- 1012839 (vdb-entry, x_refsource_SECTRACK)
- itunes-m3u-pls-bo(18851) (vdb-entry, x_refsource_XF)
- 13804 (x_refsource_SECUNIA, third-party-advisory)
- 20050113 Apple iTunes Playlist Parsing Buffer Overflow Vulnerability (x_refsource_IDEFENSE, third-party-advisory)
- APPLE-SA-2005-01-11 (vendor-advisory, x_refsource_APPLE)
- 12833 (x_refsource_OSVDB, vdb-entry)
- 12238 (vdb-entry, x_refsource_BID)
Frequently asked questions
- What is CVE-2005-0043?
- CVE-2005-0043 is a vulnerability in N/a. Published 2005-01-19.
- Is CVE-2005-0043 known to be exploited?
- 1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.