Email Communication Bypass in Mail App on Apple Mac OS X
CVE-2010-3887

Currently unrated

Key Information:

Vendor: Apple
Status: Mail
Vendor: CVE Published:; 8 October 2010

Summary

The Mail application on Apple Mac OS X contains a flaw in its Parental Controls feature. Specifically, the Limit Mail function fails to correctly enforce the whitelist for correspondence, allowing unauthorized access. This vulnerability enables a remote attacker to circumvent intended restrictions, facilitating email communication without proper parental notification if they possess knowledge of both a child's and a parent's email addresses.

References

http://blog.kamens.us/2010/08/03/mac-os-x-mail-parental-c...

x_refsource_MISC

Timeline

Vulnerability Reserved
Oct 3, 2022
Vulnerability published
Oct 8, 2010