CVE-2015-5912 | Vulnerability Database | Aqua Security

The CFNetwork FTPProtocol component in Apple iOS before 9 allows remote FTP proxy servers to trigger TCP connection attempts to intranet hosts via crafted responses.

Affected Software

Name	Vendor	Start Version	End Version
Mac_os_x	Apple	*	10.10.5 (including)

References

http://lists.apple.com/archives/security-announce/2015/Sep/msg00001.html
http://lists.apple.com/archives/security-announce/2015/Sep/msg00008.html
http://www.securityfocus.com/archive/1/536488/100/0/threaded
http://www.securityfocus.com/bid/76764
http://www.securitytracker.com/id/1033609
https://support.apple.com/HT205212
https://support.apple.com/HT205267
http://lists.apple.com/archives/security-announce/2015/Sep/msg00001.html
http://lists.apple.com/archives/security-announce/2015/Sep/msg00008.html
http://www.securityfocus.com/archive/1/536488/100/0/threaded
http://www.securityfocus.com/bid/76764
http://www.securitytracker.com/id/1033609
https://support.apple.com/HT205212
https://support.apple.com/HT205267

NVD	https://nvd.nist.gov/vuln/detail/CVE-2015-5912
CWE	https://cwe.mitre.org/data/definitions/17.html