CFNetwork in Apple Mac OS X 10.6.3 and 10.6.4 supports anonymous SSL and TLS connections, which allows man-in-the-middle malicious users to redirect a connection and obtain sensitive information via crafted responses.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
apple cfnetwork |
||
apple mac_os_x 10.6.3 |
||
apple mac_os_x_server 10.6.3 |
||
apple mac_os_x 10.6.4 |
||
apple mac_os_x_server 10.6.4 |