CVE-2010-4011
Apple Mac OS X 10.6.5 - Unauthorized User Data Exposure via Dovecot Memory Aliasing
Title source: llmDescription
Dovecot in Apple Mac OS X 10.6.5 10H574 does not properly manage memory for user names, which allows remote authenticated users to read the private e-mail of other persons in opportunistic circumstances via standard e-mail clients accessing a user's own mailbox, related to a "memory aliasing issue."
References (2)
Core 2
Core References
Vendor Advisory x_refsource_confirm
http://support.apple.com/kb/HT4452
Vendor Advisory vendor-advisory
x_refsource_apple
http://lists.apple.com/archives/security-announce/2010//Nov/msg00001.html
Scores
EPSS
0.0089
EPSS Percentile
55.1%
Details
CWE
CWE-200
Status
published
Products (1)
apple/mac_os_x_server
10.6.5 10h574
Published
Nov 17, 2010
Tracked Since
Feb 18, 2026