Free Republic 3rd Qtr 2025 Fundraising Target: $81,000 Receipts & Pledges to-date: $1,117
1%  
Woo hoo!! 3rd Qtr 2025 FReepathon is now underway!!

Keyword: vuln

Brevity: Headers | « Text »
  • Mac OS X File Association Meta Data Shell Script Execution - Another security hole found in OSX

    02/22/2006 7:42:43 AM PST · by Axlrose · 9 replies · 361+ views
    Secunia ^ | 2/22/06 | Secunia
    Michael Lehn has discovered a vulnerability in Mac OS X, which can be exploited by malicious people to compromise a user's system. The vulnerability is caused due to an error in the processing of file association meta data in ZIP archives (stored in the "__MACOSX" folder) and mail messages (defined via the AppleDouble MIME format). This can be exploited to trick users into executing a malicious shell script renamed to a safe file extension stored in a ZIP archive or in a mail attachment. This can also be exploited automatically via the Safari browser when visiting a malicious web site.