Apple Mac OS X CFNetwork (CVE-2010-1834) Security Vulnerability

Apple Mac OS X is prone to a security vulnerability in the CFNetwork component.

Specifically, the application allows cookies to be set with a partial IP.

This issue affects Mac OS X 10.6 to 10.6.4 and Mac OS X Server 10.6 to 10.6.4.

NOTE: This issue was previously covered in BID 44778 (Apple Mac OS X Prior to 10.6.5 Multiple Security Vulnerabilities), but has been given its own record to better document it.


 

Privacy Statement
Copyright 2010, SecurityFocus