Unintended Proxy Server Access Vulnerability in Apple OS X

Unintended Proxy Server Access Vulnerability in Apple OS X

CVE-2014-4440 · LOW Severity

AV:N/AC:H/AU:N/C:P/I:N/A:N

The MCX Desktop Config Profiles implementation in Apple OS X before 10.10 retains web-proxy settings from uninstalled mobile-configuration profiles, which allows remote attackers to obtain sensitive information in opportunistic circumstances by leveraging access to an unintended proxy server.

Learn more about our Cis Benchmark Audit For Desktop Software.