CVE-2004-1021

4 documents4 sources
Severity
7.5HIGH
EPSS
0.5%
top 34.47%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Apple Ical
Timeline
PublishedMar 1
Latest updateApr 29

Description

iCal before 1.5.4 on Mac OS X 10.2.3, and other later versions, does not alert the user when handling calendars that use alarms, which allows attackers to execute programs and send e-mail via alarms.

CVSS vector

AV:N/AC:L/C:P/I:P/A:PExploitability: 10.0 | Impact: 6.4

Affected Packages1 packages

NVDapple/ical1.5.3

🔴Vulnerability Details

2
GHSA
GHSA-2mxv-c4j5-3h58: iCal before 12022-04-29
CVEList
CVE-2004-1021: iCal before 12004-11-24

💥Exploits & PoCs

1
Exploit-DB
Ipswitch WS_FTP Server 5.03 - 'RNFR' Buffer Overflow2004-11-29
CVE-2004-1021 (HIGH CVSS 7.5) | iCal before 1.5.4 on Mac OS X 10.2. | cvebase.io