CVE-2016-4689

Name of the Vulnerable Software and Affected Versions iOS versions prior to 10.2

Description The issue involves the Mail component, which does not alert the user to an S/MIME email signature that used a revoked certificate. This could allow a remote attacker to affect the integrity of protected information by exploiting the lack of warning about revoked certificates.

Recommendations For iOS versions prior to 10.2, consider disabling the use of S/MIME email signatures until a patch is available. Restrict access to sensitive information sent via email to minimize the risk of exploitation.