Mac OS X vulnerability allows execution of malicious code
Author: Ken EdwardsPublished: May 20, 2004 at 5:13 am 3 comments

In what is being described as a "highly critical" vulnerability, security firm Secunia on Monday issued an advisory to all Mac OS X users that surf the Web with Microsoft's Internet Explorer or Apple's Safari Web browsers...

The result of the vulnerability, which has been confirmed using Safari 1.2.1 (v125.1) and Internet Explorer 5.2, is that it is "possible to place arbitrary files in a known location, including script files, on a user's system if the Safari browser has been configured to ("Open "safe" files after download") (default behavior) by asking a user to download a ".dmg" (disk image) file."

Source: MacCentral


Um, yea. This "flaw" has been known for a while now folks. Apple should have fixed this in February. Why didn't they? Good question.

New information found here. Many other related links are found at that article.

Basically you should get More Internet, something I have installed already. More Internet is a fix for the flaw, but Apple needs to patch the Terminal vulnerability. This is not, by the way, the first time a security hole has been found to gain access to the Terminal with more privileges then you should have. This one just has not been fixed yet.

There is an AppleScript inside the Help Viewer package that is the root of this vulnerability. This is the first OS X vulnerability I am worried about. But there is a temporary fix, and I hope Apple makes an "official" patch soon.

"rm -rf" cannot be used because the string command will not accept spaces. At least it has not been figured out yet.

Two examples of what can be done with this vulnerability:

The first uses a meta refresh to cause you to download and mount a .dmg file. The second uses this technique to launch an executable in the mounted volume. This could be used by AOL and other vermin to automatically install a "Free Trial of..." from a pop-up. That is nasty.

Originally posted at Breaking Windows.

Article tags

Spread the word
Bookmark and Share
Profile image for ken-edwards

Article Author: Ken Edwards

Ken Edwards is the Gaming Editor at Blogcritics, and calls Breaking Windows home. Ken works part time for Student Publications at BGSU as the Webmaster and System Administrator. He is also a freelance web developer.

Visit Ken Edwards's author pageKen Edwards's Blog

Read comments on this article, and add some feedback of your own
  • No image found

Article comments

  • 1 - Hal Pawluk

    May 21, 2004 at 11:42 am

    Basically you should get More Internet, something I have installed already. More Internet is a fix for the flaw

    I installed it but don't see any fix. How is it suposed tohelp?

  • 2 - Ken Edwards

    May 21, 2004 at 1:25 pm

    Sorry, the instructions were on the page I linked to.

    Open More Internet

    Find the "help" entry

    Select Change, and select a different app, the link I added suggests Chess.

    Your all set!

  • 3 - Hal Pawluk

    May 21, 2004 at 1:48 pm

    Got it (now) - thanks.

Add your comment, speak your mind

Personal attacks are NOT allowed.
Please read our comment policy.
Please preview your comment.

blogcritics lists for May 22, 2013

fresh articles Most recent articles site-wide

fresh comments Most recent comments site-wide

most comments Most comments in 24hrs

top writers Most prolific Blogcritics for April

top commenters Most prolific Commenters in 24 hrs

Sci/Tech Highlights