Home › News › Industry News

Vulnerability discovered in OS X and Safari

On February 22, 2006, 11:55 AM

A security flaw has been discovered in Mac OS X that can result in a system being compromised, even if updated with the latest available patches. Secunia has posted a security advisory detailing the nature of the exploit, which stems from incorrect handling of meta data in various file types:

The vulnerability is caused due to an error in the processing of file association meta data in ZIP archives (stored in the "__MACOSX" folder) and mail messages (defined via the AppleDouble MIME format). This can be exploited to trick users into executing a malicious shell script renamed to a safe file extension stored in a ZIP archive or in a mail attachment.
It's also possible to become compromised just by visiting a particularly crafted site with false files, making this type of exploit rival similar ones found in IE and Windows. Hopefully a patch will be made available soon, and make sure to keep your OS updated.

No tags on this story

Next Article: OCZ to demo 1000MHz DDR-2 Modules at CeBIT

1 comment

User Comments: 1

Got something to say? Post a comment

February 22, 2006 5:44 PM

DragonMaster said:

Now that Microsoft had a lot of problems discovered lately, it's Apple's turn?

Reply

Recently commented stories

TechSpot on:

Most Popular

Trending

Featured

Featured on Mice

Downloads and Drivers

World of Warcraft Patch 5.3.0

Funny Photo Maker 2.4.1

More Downloads

Latest Discussion

What's the difference between DDR3 memory and GDDR5 memory? 21 replies on Processors and Motherboards

Wireless capability keeps turning off 21 replies on Storage and Networking

Need advice on router-buy 10 replies on Storage and Networking

Zotac gtx 660 fan problem 6 replies on Audio and Video

Overclocking i7-3770k, question about speedfan 7 replies on Overclocking, Cooling and Modding

More Recent Discussion

Subscribe to TechSpot

Get free exclusive content, learn about new features and breaking tech news.

TechSpot

Welcome to TechSpot

Home › News › Industry News

Vulnerability discovered in OS X and Safari

Next Article: OCZ to demo 1000MHz DDR-2 Modules at CeBIT

User Comments: 1

Post a new comment

TechSpot on:

Most Popular

GeForce GTX 780 Review: The Titan Descendant

OCZ Vertex 450 Review: Vector-like Performance For Less

AMD A4-5000 Review: The affordable ultraportable APU

Apple's iOS 7 to be "black, white and flat all over"

Apple claims Samsung violates Siri patents with Google Now

AMD A4-5000 Review: Kabini, the mainstream APU

OCZ Vertex 450 SSD Review

Nvidia GeForce GTX 780 Review

Xbox One: Entertainment Hub First, Gaming Console Second -- But Could It Disrupt TV?

Metro: Last Light Performance, Benchmarked

Featured on Mice

84 Razer DeathAdder Respawn 3500dpi v2

87 Logitech Gaming Mouse G400

83 Logitech G500

81 Razer Naga Hex

90 SteelSeries World of Warcraft Cataclysm MMO Gaming Mouse

Downloads and Drivers

Latest Discussion

Subscribe to TechSpot

Featured Tech Content - Inside TechSpot

	Social Login & Guest Posting Post as anonymous user			TechSpot Members Login here or sign up for free, it takes about a minute.
Get complete access to the TechSpot community. Join thousands of technology enthusiasts that contribute and share knowledge in our forum. Get a private inbox, upload your own photo gallery and more.