Lucene search

[email protected]CVE-2004-1021

HistoryMar 01, 2005 - 5:00 a.m.

CVE-2004-1021

2005-03-0105:00:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

ical

cve-2004-1021

mac os x

security vulnerability

calendar

alarm

nvd

7.1 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.003 Low

EPSS

Percentile

70.1%

JSON

iCal before 1.5.4 on Mac OS X 10.2.3, and other later versions, does not alert the user when handling calendars that use alarms, which allows attackers to execute programs and send e-mail via alarms.

CPENameOperatorVersion
apple:icalapple icaleq1.5.3

CPE	Name	Operator	Version
apple:ical	apple ical	eq	1.5.3

References

lists.apple.com/archives/security-announce//2004/Nov/msg00000.html

exchange.xforce.ibmcloud.com/vulnerabilities/18209

7.1 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.003 Low

EPSS

Percentile

70.1%

JSON

Related for CVE-2004-1021

nessus1 cvelist1