The default configuration of Mail.app in Mac OS X 10.0 through 10.0.4 and 10.1 through 10.1.5 sends iDisk authentication credentials in cleartext when connecting to Mac.com, which could allow remote attackers to obtain passwords by sniffing network traffic.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2007-10-26T19:00:00Z

Updated: 2024-09-16T22:31:20.105Z

Reserved: 2007-10-26T00:00:00Z

Link: CVE-2002-2326

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2002-12-31T05:00:00.000

Modified: 2024-11-20T23:43:24.930

Link: CVE-2002-2326

cve-icon Redhat

No data.