Back to search
CVE-2008-2006
Published: May 22, 2008
Modified: Aug 7, 2024
PUBLISHED
Description
Apple iCal 3.0.1 on Mac OS X allows remote CalDAV servers, and user-assisted remote attackers, to cause a denial of service (NULL pointer dereference and application crash) or possibly execute arbitrary code via a .ics file containing (1) a large 16-bit integer on a TRIGGER line, or (2) a large integer in a COUNT field on an RRULE line.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
ADV-2008-1601
vdb-entry
x_refsource_VUPEN
ical-trigger-dos(42569)
vdb-entry
x_refsource_XF
28632
vdb-entry
x_refsource_BID
http://www.coresecurity.com/?action=item&id=2219
x_refsource_MISC
20080528 Re: CORE-2008-0126: Multiple vulnerabilities in iCal
mailing-list
x_refsource_BUGTRAQ
20080527 Re: CORE-2008-0126: Multiple vulnerabilities in iCal
mailing-list
x_refsource_BUGTRAQ
3901
third-party-advisory
x_refsource_SREASON
1020094
vdb-entry
x_refsource_SECTRACK
28629
vdb-entry
x_refsource_BID
20080521 CORE-2008-0126: Multiple vulnerabilities in iCal
mailing-list
x_refsource_BUGTRAQ
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now