CVE-2005-1505
The CVE describes a vulnerability in Mail.app 2.0 on Mac OS X 10.4 during IMAP account configuration: the new account wizard does not prompt for SSL until after the password is sent, allowing plaintext leakage. Affected component is the IMAP credential flow in Mail.app 2.0; root cause is delayed ...