← back
CVE-2006-4390

CVE-2006-4390

EPSS 0.7%
CFNetwork in Apple Mac OS X 10.4 through 10.4.7 and 10.3.9 allows remote SSL sites to appear as trusted sites by using encryption without authentication, which can cause the lock icon in Safari to be displayed even when the site's identity cannot be trusted.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://lists.apple.com/archives/security-announce/2006/Sep/msg00002.htmlhttp://secunia.com/advisories/22187http://securitytracker.com/id?1016952https://exchange.xforce.ibmcloud.com/vulnerabilities/29277http://www.osvdb.org/29267http://www.securityfocus.com/bid/20271http://www.vupen.com/english/advisories/2006/3852