iCal Alarm Execution and Email Sending Vulnerability

iCal Alarm Execution and Email Sending Vulnerability

CVE-2004-1021 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

iCal before 1.5.4 on Mac OS X 10.2.3, and other later versions, does not alert the user when handling calendars that use alarms, which allows attackers to execute programs and send e-mail via alarms.

Learn more about our User Device Pen Test.