CVE-2007-3754

2007-09-2721:00:00

mitre

www.cve.org

AI Score

6.1

Confidence

Low

EPSS

0.004

Percentile

74.6%

JSON

Mail in Apple iPhone 1.1.1, when using SSL, does not warn the user when the mail server changes or is not trusted, which might allow remote attackers to steal credentials and read email via a man-in-the-middle (MITM) attack.

References

docs.info.apple.com/article.html?artnum=306586

lists.apple.com/archives/security-announce/2007/Sep/msg00001.html

osvdb.org/38537

secunia.com/advisories/26983

securitytracker.com/id?1018752

www.securityfocus.com/bid/25856

www.vupen.com/english/advisories/2007/3287

exchange.xforce.ibmcloud.com/vulnerabilities/36845