CVE-2010-4011

Dovecot in Apple Mac OS X 10.6.5 10H574 does not properly manage memory for user names, which allows remote authenticated users to read the private e-mail of other persons in opportunistic circumstances via standard e-mail clients accessing a user's own mailbox, related to a "memory aliasing issue."

Published: Nov 17, 2010
Updated: Apr 13, 2023
CVE: CVE-2010-4011
Severity: Low
Exploit:

CVSS v2:

Severity: Low
Score: 4
AV:N/AC:L/Au:S/C:P/I:N/A:N

CWEs:

CWE-200

Affected Software
References

Software	From	Fixed in
apple / mac_os_x_server	10.6.5-10h574	10.6.5-10h574.x

http://lists.apple.com/archives/security-announce/2010//Nov/msg00001.html
http://support.apple.com/kb/HT4452

Vulnerability Database

290,206

CVE-2010-4011