CVE-2008-4491

Currently unrated

Key Information:

Vendor: Apple
Status: Mail
Vendor: CVE Published:; 8 October 2008

Summary

Apple Mail.app 3.5 on Mac OS X, when "Store draft messages on the server" is enabled, stores draft copies of S/MIME email in plaintext on the email server, which allows server owners and remote man-in-the-middle attackers to read sensitive mail.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/45688

vdb-entryx_refsource_XF

http://resources.enablesecurity.com/advisories/apple-mail...

x_refsource_MISC

http://www.securityfocus.com/bid/31598

vdb-entryx_refsource_BID

Timeline

Vulnerability published
Oct 8, 2008
Vulnerability Reserved
Oct 8, 2008