An issue was discovered in certain Apple products. iOS before 10.3 is affected. The issue involves the "DataAccess" component. It allows remote attackers to access Exchange traffic in opportunistic circumstances by leveraging a mistake in typing an e-mail address.
References
Link | Resource |
---|---|
https://support.apple.com/HT207617 | Vendor Advisory |
http://www.securityfocus.com/bid/97138 | Third Party Advisory VDB Entry |
http://www.securitytracker.com/id/1038139 |
Configurations
Information
Published : 2017-04-01 18:59
Updated : 2017-07-11 18:29
NVD link : CVE-2017-2414
Mitre link : CVE-2017-2414
JSON object : View
CWE
CWE-20
Improper Input Validation
Products Affected
apple
- iphone_os