PT-2005-1231 · Apple · Mail+1

Carl Purvis

Published

2005-01-29

Updated

2017-07-11

CVE-2005-0127

CVSS v2.0

5.0

Medium

Vector

AV:N/AC:L/Au:N/C:P/I:N/A:N

Name of the Vulnerable Software and Affected Versions Mail in Mac OS X version 10.3.7

Description The issue concerns the generation of a Message-ID header in Mail, which includes a GUUID that contains information identifying the Ethernet hardware being used. This allows remote attackers to link mail messages to a particular machine.

Recommendations For Mac OS X version 10.3.7, consider disabling the automatic generation of Message-ID headers or restricting access to this feature until a fix is available.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2005-0127

Affected Products

Macos X

Mail

PT-2005-1231 · Apple · Mail+1

CVE-2005-0127

Related Identifiers

Affected Products

References · 6