Security Advisory

CVE-2010-3831

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2010-11-26 19:00:00

Last updated 2024-08-07 03:26:12

Assigner apple

State PUBLISHED

Description

Photos in Apple iOS before 4.2 enables support for HTTP Basic Authentication over an unencrypted connection, which allows man-in-the-middle attackers to read MobileMe account passwords by spoofing a MobileMe Gallery server during a "Send to MobileMe" action.

← Browse all CVEs View on cve.org ↗