Mac OS X Exploit Found

Feb.21, 2006 in blog

I thought I would pass the below along to all the Mac OS X users:

Published: 2006-02-21,
Last Updated: 2006-02-21 09:32:13 UTC by Kyle Haugsness

We received notice from Juergen Schmidt, editor-in-chief at heise.de, that a serious vulnerability has been found in Apple Safari on OS X. “In its default configuration shell commands are execute[d] simply by visting a web site – no user interaction required.” This could be really bad. Attackers can run shell scripts on your computer remotely just by visiting a malicious website.

Full text of the article: http://www.heise.de/english/newsticker/news/69862
Proof of concept from the original discoverer (Michael Lehn): http://www.mathematik.uni-ulm.de/~lehn/mac.html

The problem is due to a feature that is activated by default: Open Safe Files after downloading. A zip file is considered safe and so they will be opened automatically. Subsequently, a shell script with no #! at the beginning of the script will be executed automatically. No user interaction!

Recommended action: disable the option “Open ’safe’ files after downloading” in the “General” preferences section in Safari.

Technorati Tags: OS X, Security, Flaw, Patch, Exploit

2 Comments on “Mac OS X Exploit Found”

aasa
August 15th, 2006 at 8:43 am
as-94783-sa

google like it?

Guest
August 20th, 2006 at 11:27 am
as-94783-sa

Very interesting article

You must be logged in to post a comment.

Hello Internet Dwellers!

Welcome to my site! These are the words and thoughts of an IT programmer turned Oil Field Consultant.

Jon Barnhardt
Recent Posts
Recent Comments
Disclaimer

Everything posted on this site are the thoughts, views and opinions of me. They may not reflect the views of my employer and are not approved or screened by anyone but me before being posted.
Meta

Midspot

Technical insanity at its best!