Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The IPSec implementation in Apple Mac OS X before 10.8.5, when Hybrid Auth is used, does not verify X.509 certificates from security gateways, which allows man-in-the-middle attackers to spoof security gateways and obtain sensitive information via a crafted certificate.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Apple Mac OS X IPSec Hybrid Auth服务器输入验证漏洞
Vulnerability Description
Apple Mac OS X是美国苹果(Apple)公司为Mac计算机所开发的一套专用操作系统。 Apple Mac OS X 10.8.4及之前的版本中的使用的IPSec Hybrid Auth服务器中存在输入验证漏洞,程序没有验证安全网关的X.509证书。中间人攻击者可通过特制的证书利用该漏洞欺骗安全网关并获得敏感信息。
CVSS Information
N/A
Vulnerability Type
N/A