6 Medium
AI Score
Confidence
Low
0.002 Low
EPSS
Percentile
59.8%
The MobileMe component in Apple Mac OS X before 10.6.8 uses a cleartext HTTP session for the Mail application to read e-mail aliases, which allows remote attackers to obtain potentially sensitive alias information by sniffing the network.
lists.apple.com/archives/security-announce/2011//Jun/msg00000.html
support.apple.com/kb/HT4723
www.securityfocus.com/bid/48444