Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
CFNetwork in Apple Mac OS X 10.5 before 10.5.7 does not properly parse noncompliant Set-Cookie headers, which allows remote attackers to obtain sensitive information by sniffing the network for "secure cookies" that are sent over unencrypted HTTP connections.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Apple Mac OS X CFNetwork 敏感信息泄露漏洞
Vulnerability Description
Mac OS X是苹果家族机器所使用的操作系统。 Apple Mac OS X 的CFNetwork中存在敏感信息泄露漏洞。CFNetwork解析Set-Cookie头实现中存在错误,可能通过非加密连接意外的发送某些cookie。这个漏洞仅影响由于兼容性原因而接收到的不符合RFC的Set-Cookie头,导致使用CFNetwork的应用程序(如Safari)在未加密的HTTP请求中发生敏感信息。
CVSS Information
N/A
Vulnerability Type
N/A