iMessage Reply Address Mismatch Vulnerability

iMessage Reply Address Mismatch Vulnerability

CVE-2012-3733 · MEDIUM Severity

AV:N/AC:M/AU:N/C:P/I:N/A:N

Messages in Apple iOS before 6, when multiple iMessage e-mail addresses are configured, does not ensure that a reply's sender address matches the recipient address of the original message, which allows remote attackers to obtain potentially sensitive information about alternate e-mail addresses in opportunistic circumstances by reading a reply.

Learn more about our Cis Benchmark Audit For Apple Ios.