VYPR
Unrated severityNVD Advisory· Published Jun 3, 2008· Updated Jun 16, 2026

CVE-2008-1035

CVE-2008-1035

Description

Use-after-free vulnerability in Apple iCal 3.0.1 on Mac OS X allows remote CalDAV servers, and user-assisted remote attackers, to trigger memory corruption or possibly execute arbitrary code via an "ATTACH;VALUE=URI:S=osumi" line in a .ics file, which triggers a "resource liberation" bug. NOTE: CVE-2008-2007 was originally used for this issue, but this is the appropriate identifier.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Apple Inc./Ical2 versions
    cpe:2.3:a:apple:ical:3.0.1:*:os_x:*:*:*:*:*+ 1 more
    • cpe:2.3:a:apple:ical:3.0.1:*:os_x:*:*:*:*:*
    • (no CPE)range: = 3.0.1

Patches

Vulnerability mechanics

References

13

News mentions

0

No linked articles in our index yet.