CVE-2008-4491

N/A Unknown

Published: October 08, 2008 Modified: April 23, 2026

Description

Apple Mail.app 3.5 on Mac OS X, when "Store draft messages on the server" is enabled, stores draft copies of S/MIME email in plaintext on the email server, which allows server owners and remote man-in-the-middle attackers to read sensitive mail.

AI Explanation

Get an AI-powered plain-language explanation of this vulnerability and remediation steps.

References to Advisories, Solutions, and Tools

Patch Vendor Advisory Exploit Third Party Advisory

http://enablesecurity.com/2008/10/03/apple-mailapp-security-advisory/

Source: cve@mitre.org

http://resources.enablesecurity.com/advisories/apple-mailapp-smime.txt

Source: cve@mitre.org

http://securityreason.com/securityalert/4363

Source: cve@mitre.org

http://www.securityfocus.com/archive/1/497057/100/0/threaded

Source: cve@mitre.org

http://www.securityfocus.com/bid/31598

Source: cve@mitre.org

http://www.securitytracker.com/id?1021019

Source: cve@mitre.org

https://exchange.xforce.ibmcloud.com/vulnerabilities/45688

Source: cve@mitre.org

http://enablesecurity.com/2008/10/03/apple-mailapp-security-advisory/