CVE-2013-5167
CVE-2013-5167 concerns CFNetwork in Apple Mac OS X pre-10.9 where Safari’s deletion of session cookies is not properly handled during a reset, enabling remote servers to track users via Set-Cookie headers. Affected: CFNetwork on macOS before 10.9. Root cause: improper cookie deletion handling in ...