CVE-2009-0144
CVE-2009-0144 concerns CFNetwork in Apple Mac OS X 10.5.x (before 10.5.7). The issue arises from improper parsing of noncompliant Set-Cookie headers, which may cause certain cookies (including sensitive ones) to be sent over unencrypted HTTP connections. Affected: Mac OS X 10.5 through 10.5.6 (se...