The TLS Handshake Protocol implementation in Secure Transport in Apple OS X prior to 10.11 accepts a Certificate Request message within a session in which no Server Key Exchange message has been sent, which allows remote malicious users to have an unspecified impact via crafted TLS data.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
apple mac os x |