Lucene search
HistoryFeb 27, 2014 - 1:55 a.m.
CVE-2014-1257
cve-2014-1257
apple os x
cfnetwork
session cookies
safari
access restrictions
6 Medium
AI Score
Confidence
Low
3.6 Low
CVSS2
Access Vector
LOCAL
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:L/AC:L/Au:N/C:P/I:P/A:N
0.0004 Low
EPSS
Percentile
11.8%
CFNetwork in Apple OS X through 10.8.5 does not remove session cookies upon a Safari reset action, which allows physically proximate attackers to bypass intended access restrictions by leveraging an unattended workstation.
References
Related
prion
prion
Design/Logic Flaw
2014-02-27 01:55:00
openvas
openvas
Apple Mac OS X Multiple Vulnerabilities -05 (Sep 2014)
2014-09-22 00:00:00
seebug
seebug
Apple Mac OS X多个安全漏洞(APPLE-SA-2014-02-25-1)
2014-02-26 00:00:00
nessus
nessus
Mac OS X Multiple Vulnerabilities (Security Update 2014-001) (BEAST)
2014-02-25 00:00:00
securityvulns
securityvulns
Apple Mac OS X multiple security vulnerabilities
2014-02-28 00:00:00
APPLE-SA-2014-02-25-1 OS X Mavericks 10.9.2 and Security Update 2014-001
2014-02-28 00:00:00
6 Medium
AI Score
Confidence
Low
3.6 Low
CVSS2
Access Vector
LOCAL
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:L/AC:L/Au:N/C:P/I:P/A:N
0.0004 Low
EPSS
Percentile
11.8%
Related for CVE-2014-1257