Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2009-0144

EPSS 0.39% · P60
Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2009-0144

Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
CFNetwork in Apple Mac OS X 10.5 before 10.5.7 does not properly parse noncompliant Set-Cookie headers, which allows remote attackers to obtain sensitive information by sniffing the network for "secure cookies" that are sent over unencrypted HTTP connections.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
Apple Mac OS X CFNetwork 敏感信息泄露漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Mac OS X是苹果家族机器所使用的操作系统。 Apple Mac OS X 的CFNetwork中存在敏感信息泄露漏洞。CFNetwork解析Set-Cookie头实现中存在错误,可能通过非加密连接意外的发送某些cookie。这个漏洞仅影响由于兼容性原因而接收到的不符合RFC的Set-Cookie头,导致使用CFNetwork的应用程序(如Safari)在未加密的HTTP请求中发生敏感信息。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)

Affected Products

VendorProductAffected VersionsCPESubscribe
-n/a n/a -

II. Public POCs for CVE-2009-0144

#POC DescriptionSource LinkShenlong Link
AI-Generated POCPremium

No public POC found.

Login to generate AI POC

III. Intelligence Information for CVE-2009-0144

登录查看更多情报信息。

Same Patch Batch · n/a · 2009-05-13 · 20 CVEs total

CVE-2009-0155Apple Mac OS X安全漏洞
CVE-2009-0944Apple Mac OS X Microsoft Office Spotlight Importer 多个内存破坏漏洞
CVE-2009-0943Apple Mac OS X HTML文档完整路径验证漏洞
CVE-2009-0942Apple Mac OS X 级联样式表验证漏洞
CVE-2009-0162Apple Safari跨站脚本攻击漏洞
CVE-2009-0161Ruby OCSP_basic_verify() X.509证书验证漏洞
CVE-2009-0160Apple Mac OS X QuickDraw处理PICT图形方式内存破坏漏洞
CVE-2009-0158Apple Mac OS X telnet命令栈溢出漏洞
CVE-2009-0157Apple Mac OS X CFNetwork 缓冲区溢出漏洞
CVE-2009-0156Apple Mac OS X 输入验证漏洞
CVE-2009-0945Apple Safari WebKit内存破坏漏洞
CVE-2009-0154Apple Mac OS X Type服务堆缓冲区溢出漏洞
CVE-2009-0153Apple Mac OS X ICU 字符编码错误漏洞
CVE-2009-0152Apple Mac OS X 配置错误漏洞
CVE-2009-0150Apple Mac OS X 栈溢出漏洞
CVE-2009-0149Apple Mac OS X 内存破坏漏洞
CVE-2009-0145Apple Mac OS X CoreGraphics PDF文件处理方式多个内存破坏漏洞
CVE-2009-0010Apple Mac OS X 和Apple QuickTime QuickDraw Manager整数溢出漏洞
CVE-2008-1517Apple Mac OS X Kernel Workqueue 本地特权升级漏洞

IV. Related Vulnerabilities

Same product: n/a
Same vendor: n/a

V. Comments for CVE-2009-0144

No comments yet

Leave a comment