14 DAY TRIAL // Apple has released iTunes 10.7 and besides enhancing support for iOS 6 the new version also fixes a number of 163 vulnerabilities found in the WebKit.
The multiple memory corruption flaws could be leveraged by cybercriminals to execute arbitrary code on the affected machine if they can convince their victims to visit a maliciously crafted website.
As H Security highlights, while internauts cannot navigate to the malicious sites directly from iTunes, attackers could utilize man-in-the-middle attacks to manipulate network traffic and direct users to them.
Customers of Windows 7, Windows Vista, Windows XP SP2 or later are advised to install the new version to ensure that they're protected against such threats. Mac OS X users are not affected.
Among the researchers who contributed to identifying these security holes we find miaubiz, Arthur Gerkis, Atte Kettunen of OUSPG, Slawomir Blazek, and Skylined and Martin Barbella, both of the Google Chrome Security Team.
iTunes is available for download here