The Synopsys Cybersecurity Research Center (CyRC) has discovered CVE-2023-32353, a security vulnerability in Apple iTunes versions prior to 12.12.9 on Microsoft Windows.
The application creates a privileged folder with weak access control. CyRC says this makes it possible for a regular user to redirect this folder creation to the Windows system directory. This can then be leveraged to obtain a higher-privileged system shell. Exploitation of this vulnerability can lead to local privilege escalation on Windows, yielding system level privileges.
Apple has patched the vulnerability. However, iTunes users on Windows should upgrade to version 12.12.9 or later.
The start of the civil trial over who is responsible for the deaths and injuries…
iPad sales are expected to grow by double digits this year.
The global smartphone market grew by 6% year-over-year (YoY) to reach 296.9 million unit shipments…
Slight Change of Sawblades +, Dicey Sungeons +, and Summer Pop + are now available…
Don’t look for a new standard iPad or updated iPad mini at next week’s “Let…
Season three of “Acapulco” is now streaming on Apple TV+.