2 matches found
CVE-2021-44549 SMTPS server hostname not checked when making TLS connection to SMTPS server
Apache Sling Commons Messaging Mail provides a simple layer on top of JavaMail/Jakarta Mail for OSGi to send mails via SMTPS. To reduce the risk of "man in the middle" attacks additional server identity checks must be performed when accessing mail servers. For compatibility reasons these addition...
Mac OS 10.4: new-account-wizzard in Mail 2.0 sends clear-text passwords
Hello there! I reported this bug at 01-May-2005 09:21 PM CEST to Apples bug- reporting facility Problem ID: 4104391 without reply yet. Summary: At its first use, Mail.app 2.0 will launch a new-account-wizzard that leads through the account-creation process. This wizzard asks for a name, a...