Submit Hint Search The Forums LinksStatsPollsHeadlinesRSS
14,000 hints and counting!


Click here to return to the 'How to avoid the new 'Help' URL handler vulnerability' hint
The following comments are owned by whoever posted them. This site is not responsible for what they say.
How to avoid the new 'Help' URL handler vulnerability
Authored by: Lankhmart on May 19, '04 12:55:45PM
I'm afraid that replacing the OpnApp.scpt file is not enough. Help Viewer can run any arbitrary AppleScript or shell command without referencing that script at all. OpnApp.scpt is only really necessary for opening a full-fledged application program or non-script file.

Someone can use one of the dmg-mounting techniques and then execute a script without invoking OpnApp.scpt at all:
help:runscript=../../../Volumes/evil_disk/evil.scpt


[ Reply to This | # ]