The Indian government's cybersecurity agency, the Indian Computer Emergency Response Team (CERT-In), has issued a warning for users of Apple iTunes and Google Chrome desktop users. The government's unit, which comes under the Ministry of Electronics & Information Technology, emphasised that the vulnerabilities in these products might potentially allow an attacker to execute arbitrary code on the targeted system.
What's The Security Issue With Apple iTunes
According to a notice, the impacted software comprises Apple iTunes versions preceding 12.13.2 for Windows. The CERT-In advisory stated, “A vulnerability has been reported in Apple iTunes which could be exploited by a remote attacker to execute arbitrary code on the targeted system.”
CERT-In reported that the Apple Product contains a 'Remote Code Execution' vulnerability resulting from inadequate checks in the CoreMedia component. It further elaborated that a remote attacker could exploit this vulnerability by sending a specifically crafted request.
ALSO READ | GTA San Andreas Was The Beast Of Its Time & Will Remain The OG: Know Why Gamers Think So
What's The Security Issue With Google Chrome
The impacted software in Google Chrome for Desktop encompasses versions earlier than 124.0.6367.201/.202 (for Windows and Mac) and versions preceding 124.0.6367.201 (for Linux).
According to the cyber agency, the vulnerabilities in Google Chrome stem from use-after-free errors in Visuals & ANGLE components and a heap buffer overflow in WebAudio.
CERT-In said, “A remote attacker could exploit these vulnerabilities by executing a specially crafted HTML page to trigger heap corruption.”
Exploiting these vulnerabilities successfully could enable a remote attacker to compromise the targeted system.
The best way to be safe from these issues is pretty simple. All you have to do in order to stay safe from such issues is to keep the apps up to date with the latest version available for them.