Apple · Cfnetwork · CVE-2010-1800
**Name of the Vulnerable Software and Affected Versions**
Apple Mac OS X versions 10.6.3 through 10.6.4
**Description**
The issue allows man-in-the-middle attackers to redirect a connection and obtain sensitive information via crafted responses, due to CFNetwork supporting anonymous SSL and TLS connections.
**Recommendations**
For Apple Mac OS X versions 10.6.3 through 10.6.4, consider disabling anonymous SSL and TLS connections to minimize the risk of exploitation.