The MCX Desktop Config Profiles implementation in Apple OS X before 10.10 retains web-proxy settings from uninstalled mobile-configuration profiles, which allows remote attackers to obtain sensitive information in opportunistic circumstances by leveraging access to an unintended proxy server.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: apple

Published: 2014-10-18T01:00:00

Updated: 2024-08-06T11:12:35.640Z

Reserved: 2014-06-20T00:00:00

Link: CVE-2014-4440

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2014-10-18T01:55:13.760

Modified: 2024-11-21T02:10:11.657

Link: CVE-2014-4440

cve-icon Redhat

No data.