Home › News › Industry News

Secunia uncovers Safari Web browser exploit

On February 21, 2006, 1:49 PM

Secunia has documented a possible exploit in Apple’s Safari Web browser. The company has rated the exploit as extremely critical. Known as "Mac OS X “__MACOSX” ZIP Archive Shell Script Execution", the exploit stems from a preference setting in the Safari Web browser which can lead to the execution of a malicious shell script, renamed to a "safe" extension in a ZIP archive.

That preference allows the Mac to automatically open “safe” files after downloading them. So-called safe files include movies, pictures, sounds, PDF and text documents, disk images and other archives.

If a shell script is renamed to appear as a “safe” extension to Safari, systems that have this preference turned on can automatically execute the script — and this can be exploited by someone with malicious intentions, according to Secunia.

No tags on this story

Next Article: Dell misses out on $700 Million contract

1 comment

User Comments: 1

Got something to say? Post a comment

February 21, 2006 3:16 PM

DragonMaster said:

Bad... We find more bugs from Apple software!

Reply

Recently commented stories

TechSpot on:

Most Popular

Trending

Featured

Featured on Smartphones

Downloads and Drivers

Downloads

Drivers

J. River Media Center 18.0.187

ComicRack 0.9.169

Ashampoo UnInstaller 5.03

Files Terminator Free 2.5.0.11

Advanced Host Monitor 9.50

More Downloads

Latest Discussion

Have DOTA 2 keys to give (steam requiered) 8 replies on Gaming

Best possible quality DVD ripping? 5 replies on Software Apps

Bios update help 10 replies on Processors and Motherboards

Windows update completely stopped working, unknown error 8024402C 6 replies on Windows OS

Bitdefender 5 replies on Software Apps

More Recent Discussion

Subscribe to TechSpot

Get free exclusive content, learn about new features and breaking tech news.

TechSpot

Welcome to TechSpot

Home › News › Industry News

Secunia uncovers Safari Web browser exploit

Next Article: Dell misses out on $700 Million contract

User Comments: 1

Post a new comment

TechSpot on:

Most Popular

Microsoft launches YouTube app, Google demands it taken down

Nvidia Shield arrives in June for $349, pre-orders open now (update)

Bill Gates is once again the richest person in the world

Asus' new lineup of Z87 Haswell motherboards revealed

Google, NASA join forces to build quantum computing laboratory

Metro: Last Light Review

Gigabyte U2442F Ultrabook Review

8 Free to Play Games That Are Too Good to Be True

Far Cry 3: Blood Dragon Review

Samsung Galaxy S 4 Review

Featured on Smartphones

90 Samsung Galaxy S 4 GT-I9500

87 Google Nexus 4

87 Sony Xperia Z

73 BlackBerry Z10

89 HTC One

Downloads and Drivers

Latest Discussion

Subscribe to TechSpot

Featured Tech Content - Inside TechSpot

	Social Login & Guest Posting Post as anonymous user			TechSpot Members Login here or sign up for free, it takes about a minute.
Get complete access to the TechSpot community. Join thousands of technology enthusiasts that contribute and share knowledge in our forum. Get a private inbox, upload your own photo gallery and more.