CVE-2014-8839

Name of the Vulnerable Software and Affected Versions Apple OS X versions prior to 10.10.2

Description The issue allows remote attackers to discover recipient IP addresses by including an inline image in an HTML e-mail message and logging HTTP requests for this image's URL, due to the failure of Spotlight to enforce the Mail "Load remote content in messages" configuration.

Recommendations For Apple OS X versions prior to 10.10.2, update to version 10.10.2 or later to resolve the issue.