Description
Unquoted Windows search path vulnerability in iTunesHelper.exe in iTunes 4.7.1.30 and iTunes 5 for Windows might allow local users to gain privileges via a malicious C:\program.exe file.
Affected products
- Apple / itunes4.7.1.30 – 4.7.1.30
- Apple / itunes5.0 – 5.0