The default configuration of Mail.app in Mac OS X 10.0 through 10.0.4 and 10.1 through 10.1.5 sends iDisk authentication credentials in cleartext when connecting to Mac.com, which could allow remote attackers to obtain passwords by sniffing network traffic.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2007-10-26T19:00:00Z
Updated: 2024-09-16T22:31:20.105Z
Reserved: 2007-10-26T00:00:00Z
Link: CVE-2002-2326
Vulnrichment
No data.
NVD
Status : Modified
Published: 2002-12-31T05:00:00.000
Modified: 2024-11-20T23:43:24.930
Link: CVE-2002-2326
Redhat
No data.