CVE-2010-4011

Apple Mac OS X 10.6.5 - Unauthorized User Data Exposure via Dovecot Memory Aliasing

Title source: llm
STIX 2.1

Description

Dovecot in Apple Mac OS X 10.6.5 10H574 does not properly manage memory for user names, which allows remote authenticated users to read the private e-mail of other persons in opportunistic circumstances via standard e-mail clients accessing a user's own mailbox, related to a "memory aliasing issue."

References (2)

Core 2
Core References
Vendor Advisory x_refsource_confirm
http://support.apple.com/kb/HT4452
Vendor Advisory vendor-advisory x_refsource_apple
http://lists.apple.com/archives/security-announce/2010//Nov/msg00001.html

Scores

EPSS 0.0089
EPSS Percentile 55.1%

Details

CWE
CWE-200
Status published
Products (1)
apple/mac_os_x_server 10.6.5 10h574
Published Nov 17, 2010
Tracked Since Feb 18, 2026