CVE-2007-3754

Mail in Apple iPhone 1.1.1, when using SSL, does not warn the user when the mail server changes or is not trusted, which might allow remote attackers to steal credentials and read email via a man-in-the-middle (MITM) attack.
Configurations

Configuration 1 (hide)

OR cpe:2.3:h:apple:iphone:1.0:*:*:*:*:*:*:*
cpe:2.3:o:apple:iphone_os:1.0.1:*:*:*:*:*:*:*
cpe:2.3:o:apple:iphone_os:1.0.2:*:*:*:*:*:*:*

History

09 Aug 2022, 13:46

Type Values Removed Values Added
CPE cpe:2.3:h:apple:iphone:1.0.2:*:*:*:*:*:*:*
cpe:2.3:h:apple:iphone:1.0.1:*:*:*:*:*:*:*
cpe:2.3:o:apple:iphone_os:1.0.1:*:*:*:*:*:*:*
cpe:2.3:o:apple:iphone_os:1.0.2:*:*:*:*:*:*:*

Information

Published : 2007-09-27 21:17

Updated : 2024-02-04 17:13


NVD link : CVE-2007-3754

Mitre link : CVE-2007-3754

CVE.ORG link : CVE-2007-3754


JSON object : View

Products Affected

apple

  • iphone_os
  • iphone
CWE
CWE-287

Improper Authentication