Most Viewed Content:

Huawei Enjoy 70z phone released with 6000mAh large battery

Huawei Enjoy 70z phone started pre-sale today, equipped with...

Motorola Edge 50 Pro exposed with 50W wireless / 125W wired fast charging

According to foreign technology media 91Mobile, the Motorola Edge...

Attackers Use Microsoft OneNote Notes to Spread Malware That Can Steal Sensitive Information

According to foreign tech media outlet BleepingComputer, a malicious...

Apple recommends upgrading iTunes for PC to 12.12.9 as soon as possible

Apple officially released iTunes 12.12.9 update for Win10 and Win11 on May 23, which focuses on fixing the privilege escalation vulnerability and recommends users install it as soon as possible.

According to a press release on Apple’s website, malware can install malware on Win10 and Win11 devices by elevating privileges through a vulnerability on iTunes. Apple fixed the vulnerability in an iTunes update released last week, and Synopsys, the security firm that discovered the vulnerability, shared more details today.

The details of the vulnerability according to the report as follows:

  • Previously, a vulnerability in the control of folder permissions in iTunes for PC allowed an attacker to create a folder that redirected to the Windows system directory, which could be used to obtain a higher privileged system shell.
  • The iTunes application creates a folder SC Info in the C:\ProgramData/Apple Computer/iTunes directory as the system user and grants full control of this directory to all users.
  • Users running the iTunes application can delete the SC Info folder, create a link to the Windows system folder, and recreate the folder by forcing an MSI fix that can later be used to gain Windows SYSTEM-level access.

Synopsys first discovered the issue in September 2022 and told Apple about it at the time. Apple confirmed the vulnerability last November and then patched it in May.

Latest

BYD Song Pro / PLUS DM-i Honor Edition will be launched in early March

Bitauto reported that BYD Song Pro DM-i Honor Edition...

Polestar 3 announces mass production, positioned as pure electric SUV

Polestar announced today that Polestar 3 has started mass...

Nothing Phone (2a) with Fresh Eyes concept design to release on March 5th

Nothing Phone (2a) announced that it will be released...

Google Pixel Fold 2 rendering: 6.4-inch outer screen, 7.9-inch inner screen

Source @OnLeaks recently shared a high-definition CAD rendering of...

Newsletter

Don't miss

BYD Song Pro / PLUS DM-i Honor Edition will be launched in early March

Bitauto reported that BYD Song Pro DM-i Honor Edition...

Polestar 3 announces mass production, positioned as pure electric SUV

Polestar announced today that Polestar 3 has started mass...

Nothing Phone (2a) with Fresh Eyes concept design to release on March 5th

Nothing Phone (2a) announced that it will be released...

Google Pixel Fold 2 rendering: 6.4-inch outer screen, 7.9-inch inner screen

Source @OnLeaks recently shared a high-definition CAD rendering of...

Samsung Galaxy A55 5G photos exposed: 50MP main camera, up to 12GB memory

Source Mukul Sharma recently tweeted, sharing real photos of...
James Lopez
James Lopezhttps://www.techgoing.com
James Lopez joined Techgoing as Senior News Editor in 2022. He's been a tech blogger since before the word was invented, and will never log off.

Samsung Galaxy A55 5G photos exposed: 50MP main camera, up to 12GB memory

Source Mukul Sharma recently tweeted, sharing real photos of the Samsung Galaxy A55 5G phone and revealing the key specifications of the phone. According to...

Motorola Edge 50 Pro exposed with 50W wireless / 125W wired fast charging

According to foreign technology media 91Mobile, the Motorola Edge 50 Pro series phones have passed certifications from multiple agencies, indicating that the phone is...

Vivo X Fold 3 Pro passed 3C certification, with 120W fast charging

A Vivo phone model V2337A recently passed the domestic 3C certification. The leaked information shows that V2337A is the Vivo X Fold3 Pro folding...