Technology news and Jobs 
Information Technology News Mac quarantine bug returns in Leopard
Information Technology News Mac quarantine bug returns in Leopard | Mac quarantine bug returns in Leopard |
|
| by Stephen Withers | |
| Thursday, 22 November 2007 | |
|
The problem was identified by Heise Security, which explains how a supposedly safe filetype such as a JPEG image can be doctored to contain a a shell script or other executable plus a resource fork that tells the Mac which application should be used to open it. Heise has prepared a proof of concept for the vulnerability. The attachment appears to be a JPEG file, but attempting to open it launches the Terminal utility instead of displaying an image in Preview or whichever application the user has designated for JPEGs. While Heise's example purports to be harmless, it would be a simple matter to deliver a shell script that deletes all of the files in the recipient's home folder. The ability to deliver and run an executable file in this manner represents a real threat to the unwary. According to security vendor Intego, clicking an attachment in Mail for the first time bypasses the quarantine alert, but a subsequent attempt triggers the warning. More worryingly, if the same attachment arrives in later emails, it will be opened without warning. Until Apple releases a patch, users should be especially careful about opening attachments, or use an anti-virus program capable of detecting such exploits.
Get stories like this delivered daily - FREE - subscribe now
|
Tags
| < Next story in category | Previous story in the category > |
|---|
