Full Disclosure

Re: iTunes 12.1 for Windows: still outdated and VULNERABLE 3rd party libraries, still UNQUOTED and VULNERABLE pathnames C:Program Files…

February 2, 2015 007admin

Posted by Stefan Kanthak on Feb 02

“Brandon Perry” <bperry.volatile () gmail com> wrote:

Or do you mean exploits like this one:
<http://seclists.org/fulldisclosure/2014/May/163>

EVERY developer should know that

* his/her software is not the only application installed on a users PC;

* the outdated or vulnerable components s/he delivers and ínstalls can
be called by every other application or malware running on a users PC!

JFTR: the MSVCRT DLL of Visual…

Software and Security Information