CVE-2008-0050

Published: Mar 18, 2008Modified: Apr 23, 2026

5.0

Vector

AV:N/AC:L/Au:N/C:P/I:N/A:N

Exploitability: 10.0 / Impact: 2.9

Source: NVD

Description

CFNetwork in Apple Mac OS X 10.4.11 allows remote HTTPS proxy servers to spoof secure websites via data in a 502 Bad Gateway error.

Affected (2)

Products: Apple: Mac Os X, Mac Os X Server

Apple

2 products

Mac Os X

Mac Os X Server

Configuration A

2 vulnerable

Vulnerable Software	Affected Versions
Apple Mac Os X	Version 10.4.11
Apple Mac Os X Server	Version 10.4.11

Related CWEs

CWE-200

Exposure of Sensitive Information to an Unauthorized Actor

The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.

References (28)

http://docs.info.apple.com/article.html?artnum=307562

Source: cve@mitre.org

http://docs.info.apple.com/article.html?artnum=307563

Source: cve@mitre.org

http://lists.apple.com/archives/security-announce/2008//Jul/msg00001.html

Source: cve@mitre.org

http://lists.apple.com/archives/security-announce/2008/Mar/msg00001.html

Source: cve@mitre.org

Patch

http://secunia.com/advisories/29420

Source: cve@mitre.org

http://secunia.com/advisories/31074

Source: cve@mitre.org

http://www.securityfocus.com/bid/28290

Source: cve@mitre.org

http://www.securityfocus.com/bid/28356

Source: cve@mitre.org

http://www.securitytracker.com/id?1019655

Source: cve@mitre.org

http://www.us-cert.gov/cas/techalerts/TA08-079A.html

Source: cve@mitre.org

US Government Resource

http://www.vupen.com/english/advisories/2008/0920/references

Source: cve@mitre.org

http://www.vupen.com/english/advisories/2008/0924/references

Source: cve@mitre.org

http://www.vupen.com/english/advisories/2008/2094/references

Source: cve@mitre.org

https://exchange.xforce.ibmcloud.com/vulnerabilities/41313

Source: cve@mitre.org

http://docs.info.apple.com/article.html?artnum=307562