CFNetwork in Apple OS X through 10.8.5 does not remove session cookies upon a Safari reset action, which allows physically proximate attackers to bypass intended access restrictions by leveraging an unattended workstation.
Metrics
Affected Vendors & Products
References
Link | Providers |
---|---|
http://support.apple.com/kb/HT6150 |
History
No history.
MITRE
Status: PUBLISHED
Assigner: apple
Published: 2014-02-27T01:00:00
Updated: 2024-08-06T09:34:41.201Z
Reserved: 2014-01-08T00:00:00
Link: CVE-2014-1257
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2014-02-27T01:55:03.897
Modified: 2014-02-27T13:55:11.227
Link: CVE-2014-1257
Redhat
No data.