Address Book in Apple Mac OS X prior to 10.7.3 automatically switches to unencrypted sessions upon failure of encrypted connections, which allows remote malicious users to read CardDAV data by terminating an encrypted connection and then sniffing the network.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
apple mac os x 10.7.0 |
||
apple mac os x server 10.7.1 |
||
apple mac os x 10.7.1 |
||
apple mac os x |
||
apple mac os x server 10.7.0 |
||
apple mac os x server |