CVE-2010-3887

EUVD-2010-3865
The Limit Mail feature in the Parental Controls functionality in Mail on Apple Mac OS X does not properly enforce the correspondence whitelist, which allows remote attackers to bypass intended access restrictions and conduct e-mail communication by leveraging knowledge of a child's e-mail address and a parent's e-mail address, related to parental notification of unapproved e-mail addresses.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
4.3 UNKNOWN
NETWORK
MEDIUM
AV:N/AC:M/Au:N/C:N/I:P/A:N
Base Score
CVSS 3.x
EPSS Score
Percentile: 36%
Affected Products (NVD)
VendorProductVersion
applemail
*
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://blog.kamens.us/2010/08/03/mac-os-x-mail-parental-controls-vulnerability/
http://blog.kamens.us/2010/08/03/mac-os-x-mail-parental-controls-vulnerability/