NuytsTech Security

CVE-2008-4491

by ·

Apple Mail.app 3.5 on Mac OS X, when "Store draft messages on the server" is enabled, stores draft copies of S/MIME email in plaintext on the email server, which allows server owners and remote man-in-the-middle attackers to read sensitive mail.

Date published : 2008-10-08

http://www.securityfocus.com/bid/31598

http://www.securityfocus.com/archive/1/497057/100/0/threaded

Tags: