Unrated severityNVD Advisory· Published Oct 8, 2008· Updated Jun 16, 2026
CVE-2008-4491
CVE-2008-4491
Description
Apple Mail.app 3.5 on Mac OS X, when "Store draft messages on the server" is enabled, stores draft copies of S/MIME email in plaintext on the email server, which allows server owners and remote man-in-the-middle attackers to read sensitive mail.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2cpe:2.3:a:apple:mail:3.5:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:apple:mail:3.5:*:*:*:*:*:*:*
- (no CPE)
Patches
Vulnerability mechanics
References
7- enablesecurity.com/2008/10/03/apple-mailapp-security-advisory/nvd
- resources.enablesecurity.com/advisories/apple-mailapp-smime.txtnvd
- securityreason.com/securityalert/4363nvd
- www.securityfocus.com/archive/1/497057/100/0/threadednvd
- www.securityfocus.com/bid/31598nvd
- www.securitytracker.com/idnvd
- exchange.xforce.ibmcloud.com/vulnerabilities/45688nvd
News mentions
0No linked articles in our index yet.