RSS   Vulnerabilities for 'MAIL'   RSS

2018-05-16
 
CVE-2017-17689

CWE-noinfo
 

 
The S/MIME specification allows a Cipher Block Chaining (CBC) malleability-gadget attack that can indirectly lead to plaintext exfiltration, aka EFAIL.

 
 
CVE-2017-17688

CWE-noinfo
 

 
** DISPUTED ** The OpenPGP specification allows a Cipher Feedback Mode (CFB) malleability-gadget attack that can indirectly lead to plaintext exfiltration, aka EFAIL. NOTE: third parties report that this is a problem in applications that mishandle the Modification Detection Code (MDC) feature or accept an obsolete packet type, not a problem in the OpenPGP specification.

 
2010-10-08
 
CVE-2010-3887

CWE-264
 

 
The Limit Mail feature in the Parental Controls functionality in Mail on Apple Mac OS X does not properly enforce the correspondence whitelist, which allows remote attackers to bypass intended access restrictions and conduct e-mail communication by leveraging knowledge of a child's e-mail address and a parent's e-mail address, related to parental notification of unapproved e-mail addresses.

 
2008-10-08
 
CVE-2008-4491

CWE-200
 

 
Apple Mail.app 3.5 on Mac OS X, when "Store draft messages on the server" is enabled, stores draft copies of S/MIME email in plaintext on the email server, which allows server owners and remote man-in-the-middle attackers to read sensitive mail.

 
2008-02-12
 
CVE-2008-0039

CWE-94
 

 
Unspecified vulnerability in Mail in Apple Mac OS X 10.4.11 allows remote attackers to execute arbitrary commands via a crafted file:// URL.

 
2005-08-19
 
CVE-2005-2512

 

 
Mail.app in Mac OS 10.4.2 and earlier, when printing or forwarding an HTML message, loads remote images even when the user's preferences state otherwise, which could result in a privacy leak.

 

 >>> Vendor: Apple 126 Products
IOS
Appleshare
A UX
JAVA
Mac os
Mac os x
Ichat server
Appleshare mail server
Webobjects
Mac os runtime for java
CUPS
Quicktime
Personal web sharing
Claris emailer
Mac os x server
Tcp ip configuration utility
Darwin streaming server
Quicktime streaming server
Quicktime darwin mp3 broadcaster
802.11n
Safari
Afp server
ICAL
Ichat
Ichat av
Remote desktop
Apache mod digest apple
Xcode
Itunes
Airport express
Airport extreme
Quicktime pictureviewer
Applescript
Terminal
Keynote
Airport card
MAIL
Weblog server
Textedit
Imageio
XSAN
Bomarchivehelper
Iphoto
Preview
Webkit
Minimal slp service agent
Software update
Cfnetwork
Installer
Webcore
Instant message framework
Mdnsresponder
Imovie
Mac os x preview.app
Server manager
Xserve lights-out management
Iphone
Pdfkit
Quartz composer
Core audio technologies
Iphone os
Mobile safari
Aperture
Podcast producer
Apple airport extreme base station
Core image fun house
Xcode tools
Carboncore
Coregraphics
Data detectors engine
Quicklook
Bonjour
Motion
Ipod touch
Iphone configuration web utility
Quicktime mpeg-2 playback component
Airport express base station firmware
Airport extreme base station firmware
Time capsule
Garageband
Java 1.4
Java 1.5
Java 1.6
Airport utility
Libsecurity
Apple type services
Apple tv
Ipad2
Apple remote desktop
Swift
Olive toast documents pro file viewer
Airport base station firmware
Os x server
Pages
Boot camp
Watch os
Watchos
Iwork
Numbers
Ibooks author
See all Products for Vendor Apple


Copyright 2024, cxsecurity.com

 

Back to Top