• info
• discussion
• exploit
• solution
• references

Apple Safari CFNetwork Arbitrary Secure Website Spoofing Vulnerability

To exploit this issue, an attacker must be able to control an HTTPS proxy server used by a victim.