2 matches found
CVE-2003-1263
CVE-2003-1263 affects the ICAL.EXE component in iCal 3.7. A malformed HTTP request (possibly due to an invalid method name) can cause a remote DoS crash. Public details consistently describe a crash condition without providing exploit code, vectors, or patched versions. The available records do n...
CVE-2006-0924
Affected product : Brown Bear iCal 3.10. Vulnerability : Cross-site scripting (XSS) via the Calendar Text field when adding a new event. Impact : remote attackers can inject arbitrary web script or HTML. Root cause : insufficient sanitization/input handling in the Calendar Text field. Exploitatio...