Apple · Os X · CVE-2015-1089
**Name of the Vulnerable Software and Affected Versions**
Apple iOS versions prior to 8.3
Apple OS X versions prior to 10.10.3
**Description**
The issue allows remote attackers to bypass the Same Origin Policy via a crafted web site, due to improper handling of cookies during processing of redirects in HTTP responses.
**Recommendations**
For Apple iOS versions prior to 8.3, update to version 8.3 or later.
For Apple OS X versions prior to 10.10.3, update to version 10.10.3 or later.