Information disclosure vulnerability in Spotlight in Apple Mac OS XID: oval:org.secpod.oval:def:23434 | Date: (C)2015-02-06 (M)2023-12-07 |
Class: VULNERABILITY | Family: macos |
The host is installed with Apple Mac OS X or Server 10.10.x before 10.10.2 and is prone to an information disclosure vulnerability. A flaw is present in the application, which fails to check the status of Mail's "Load remote content in messages" setting. Successful exploitation allows attackers to determine the IP address of the recipient.
Platform: |
Apple Mac OS X 10.10 |
Apple Mac OS X Server 10.10 |