PT-2005-3628 · Apple · Mail.App+1

Norbert Rittel

Published

2005-10-25

Updated

2008-09-05

CVE-2005-2746

CVSS v2.0

5.0

Medium

Vector

AV:N/AC:L/Au:N/C:P/I:N/A:N

Name of the Vulnerable Software and Affected Versions Mail.app in Mail for Apple Mac OS X versions 10.3.9 through 10.4.2

Description The issue concerns Mail.app in Mail for Apple Mac OS X, where it includes message contents when using auto-reply rules. This could lead to Mail.app including decrypted message contents for encrypted messages.

Recommendations For Mac OS X versions 10.3.9 through 10.4.2, consider disabling the auto-reply feature in Mail.app until a fix is available to prevent potential exposure of decrypted message contents.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2005-2746

Affected Products

Macos X

Mail.App

PT-2005-3628 · Apple · Mail.App+1

CVE-2005-2746

Related Identifiers

Affected Products

References · 5