Regarding the recent MacOS X Exploit

Feb. 21st, 2006 01:42 pm
ibneko: (Default)
[personal profile] ibneko
Secunia (security-bug-whatnot site that I follow) has released a Vulnerability test for the Safari command execution exploit.

http://secunia.com/mac_os_x_command_execution_vulnerability_test/

The current available solution:
Solution:
The vulnerability can be mitigated by disabling the "Open safe files after downloading" option in Safari.

--
Or use firefox. Maybe. I dunno. Will test that... maybe much later.
Tags:
  • Add Memory
  • Share This Entry
Flat | Top-Level Comments Only

Date: 2006-02-21 09:24 pm (UTC)
From: [identity profile] fbartho.livejournal.com
these are directions on how to make your own exploit for this, so you are certain what's in the files, the link on secunia is just a launch command for calculator.app, and on another link in slashdot for Heiser-something was just a jpg that did ls -al and echo "some german message"

http://apple.slashdot.org/comments.pl?sid=178068&cid=14767986
  • Add Memory
  • Share This Entry
Flat | Top-Level Comments Only

Expand Cut Tags

No cut tags

Profile

ibneko: (Default)
ibneko

Most Popular Tags

Page Summary

Active Entries

Style Credit

Page generated Jan. 20th, 2026 06:02 pm
Powered by Dreamwidth Studios
January 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 2021