Skip to main content
ted_barker
ted_barker
New Member
February 2, 2019
Question

FortiClient 6.0.5: Windows 10: Vulnerability Scan does not check iTunes for updates?

  • February 2, 2019
  • 1 reply
  • 2795 views

Hi,

 

I installed FortiClient 6.0.5 on Windows 10 and the vulnerability scanner ran and did not check for the iTunes security update available?

    1 reply

    ted_barker
    ted_barkerAuthor
    New Member
    February 2, 2019

    https://support.apple.com/en-us/HT209450

     

    iTunes 12.9.3 for Windows

    Released January 24, 2019

    AppleKeyStore

    Available for: Windows 7 and later

    Impact: A sandboxed process may be able to circumvent sandbox restrictions

    Description: A memory corruption issue was addressed with improved validation.

    CVE-2019-6235: Brandon Azad

    Core Media

    Available for: Windows 7 and later

    Impact: A malicious application may be able to elevate privileges

    Description: An out-of-bounds read was addressed with improved bounds checking.

    CVE-2019-6221: Fluoroacetate working with Trend Micro's Zero Day Initiative

    SQLite

    Available for: Windows 7 and later

    Impact: A maliciously crafted SQL query may lead to arbitrary code execution

    Description: Multiple memory corruption issues were addressed with improved input validation.

    CVE-2018-20346: Tencent Blade Team

    CVE-2018-20505: Tencent Blade Team

    CVE-2018-20506: Tencent Blade Team

    WebKit

    Available for: Windows 7 and later

    Impact: Processing maliciously crafted web content may lead to arbitrary code execution

    Description: A type confusion issue was addressed with improved memory handling.

    CVE-2019-6215: Lokihardt of Google Project Zero

    WebKit

    Available for: Windows 7 and later

    Impact: Processing maliciously crafted web content may lead to arbitrary code execution

    Description: Multiple memory corruption issues were addressed with improved memory handling.

    CVE-2019-6212: an anonymous researcher, an anonymous researcher

    CVE-2019-6216: Fluoroacetate working with Trend Micro's Zero Day Initiative

    CVE-2019-6217: Fluoroacetate working with Trend Micro's Zero Day Initiative, Proteas, Shrek_wzw, and Zhuo Liang of Qihoo 360 Nirvan Team

    CVE-2019-6226: Apple

    WebKit

    Available for: Windows 7 and later

    Impact: Processing maliciously crafted web content may lead to arbitrary code execution

    Description: A memory corruption issue was addressed with improved memory handling.

    CVE-2019-6227: Qixun Zhao of Qihoo 360 Vulcan Team

    CVE-2019-6233: G. Geshev from MWR Labs working with Trend Micro's Zero Day Initiative

    CVE-2019-6234: G. Geshev from MWR Labs working with Trend Micro's Zero Day Initiative

    WebKit

    Available for: Windows 7 and later

    Impact: Processing maliciously crafted web content may lead to universal cross site scripting

    Description: A logic issue was addressed with improved validation.

    CVE-2019-6229: Ryan Pickren (ryanpickren.com)

    ted_barker
    ted_barkerAuthor
    New Member
    February 3, 2019

    Where can a user of the free forticlient go and ask about the vulnerability management?

    Terms & ConditionsAccessibility statement