2 matches found
CVE-2014-1257
CFNetwork in Apple OS X through 10.8.5 does not remove session cookies upon a Safari reset action, which allows physically proximate attackers to bypass intended access restrictions by leveraging an unattended workstation...
CVE-2014-1257
CVE-2014-1257 affects CFNetwork cookies in Apple OS X up to 10.8.5. The vulnerability arises because Safari reset actions do not reliably remove session cookies, allowing a physically proximate attacker with an unattended workstation to bypass access restrictions. Publicly documented details in t...