Home page logo
/

fulldisclosure logo Full Disclosure mailing list archives

Re: Question about Mac OS X 10.4 Security
From: "KF (lists)" <kf_lists () digitalmunition com>
Date: Tue, 28 Feb 2006 10:49:09 -0500


I think you're living in a fantasy world. The recent vulnerability, which allows the running of arbitrary code simply by clicking on a linked zip file will probably result in at least a handful of new viruses/worms for the Mac platform within the next week or two.

I agree 100% . Zip file / metadata bug added to a malicious InputManager , fucked up dyld file or environment.plist is like instant IE style popup city for Mac users running Safari. It would literally take about 20 minutes to put something together.

-KF

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/


  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]
AlienVault