Vulnerability Description
The Limit Mail feature in the Parental Controls functionality in Mail on Apple Mac OS X does not properly enforce the correspondence whitelist, which allows remote attackers to bypass intended access restrictions and conduct e-mail communication by leveraging knowledge of a child's e-mail address and a parent's e-mail address, related to parental notification of unapproved e-mail addresses.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Apple | All versions | |
| Apple | Mac Os X | All versions |
Related Weaknesses (CWE)
References
- http://blog.kamens.us/2010/08/03/mac-os-x-mail-parental-controls-vulnerability/
- http://blog.kamens.us/2010/08/03/mac-os-x-mail-parental-controls-vulnerability/
FAQ
What is CVE-2010-3887?
CVE-2010-3887 is a vulnerability with a CVSS score of 4.3 (MEDIUM). The Limit Mail feature in the Parental Controls functionality in Mail on Apple Mac OS X does not properly enforce the correspondence whitelist, which allows remote attackers to bypass intended access ...
How severe is CVE-2010-3887?
CVE-2010-3887 has been rated MEDIUM with a CVSS base score of 4.3/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2010-3887?
Check the references section above for vendor advisories and patch information. Affected products include: Apple Mail, Apple Mac Os X.