Apple iCloud 7.3 and iTunes 12.7.3 For Windows Security Update
Multiple vulnerabilities in Apple iCloud for Windows and iTunes for Windows could allow an unauthenticated, remote attacker to execute arbitrary code on a targeted system.
This update addresses four vulnerabilities in the Webkit component of the affected software and are due to improper handling of memory. An attacker could exploit these vulnerabilities by persuading a targeted user to visit a malicious website. A successful exploit could allow the attacker to execute arbitrary code.
Administrators are advised to apply the appropriate updates.
Administrators are advised to allow only trusted users to have access to the affected software.
Administrators are advised to monitor affected systems.
Apple has released security advisories at the following links: HT208473 and HT208474
Apple has released software updates and instructions for obtaining those updates at the following links: iCloud for Windows 7.3 and iTunes 12.7.3 for Windows
Duncan is a technology professional with over 20 years experience of working in various IT roles. He has a interest in cyber security, and has a wide range of other skills in radio, electronics and telecommunications.