CVE-2009-2072
CVE-2009-2072 affects Apple Safari. The vulnerability: Safari may display a lock icon for an HTTPS site without requiring a cached certificate, allowing a man-in-the-middle to spoof an arbitrary HTTPS site by sending a crafted (1) 4xx or (2) 5xx CONNECT response page through a proxy. This is docu...