CVE-2014-1257 - CERT CVE
ID CVE-2014-1257
Sažetak CFNetwork in Apple OS X through 10.8.5 does not remove session cookies upon a Safari reset action, which allows physically proximate attackers to bypass intended access restrictions by leveraging an unattended workstation.
Reference
CVSS
Base: 3.6
Impact: 4.9
Exploitability:3.9
Pristup
VektorSloženostAutentikacija
LOCAL LOW NONE
Impact
PovjerljivostCjelovitostDostupnost
PARTIAL PARTIAL NONE
CVSS vektor AV:L/AC:L/Au:N/C:P/I:P/A:N
Zadnje važnije ažuriranje 27-02-2014 - 13:55
Objavljeno 27-02-2014 - 01:55