Apple iTunes XML Parsing Remote Denial of Service Vulnerability

Bugtraq ID:	22615
Class:	Design Error
CVE:	CVE-2007-1008
Remote:	Yes
Local:	No
Published:	Feb 19 2007 12:00AM
Updated:	May 12 2015 07:34PM
Credit:	poplix is credited with the discovery of this vulnerability.
Vulnerable:	Apple iTunes 7.0.2
Not Vulnerable:

Apple iTunes XML Parsing Remote Denial of Service Vulnerability

Apple iTunes is prone to a remote denial-of-service vulnerability because the application fails to handle malformed XML playlist files.

An attacker can exploit this issue to crash the application, triggering a denial-of-service condition.

Apple iTunes version 7.0.2 for Intel and PowerPC are vulnerable to this issue; other versions may also be affected.

Apple iTunes XML Parsing Remote Denial of Service Vulnerability

The following proof-of-concept XML playlist file is available:

<?die with your boots on?>
<kb:station_record>
<kb:station_url_record>
</kb:station_url_record>

Apple iTunes XML Parsing Remote Denial of Service Vulnerability

Solution:
Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].

Apple iTunes XML Parsing Remote Denial of Service Vulnerability

References:

• iTunes Homepage (Apple)
  
• iTunes remote memory corruption vulnerability ([email protected])