|
|
The Culprit
I think the real vulnerability is in BOMArchiveHelper.app. Read my detailed explanation in today's MacIntouch (2006-02-22).
-Mark
The Culprit
I agree with you, BOMArchiveHelper.app automatically opening files is the problem (there might be some useful cases but BOM should never be allowed to open a file which wants to be opened by Terminal.app).
The Culprit
It's done with a resource of type 'usro' in the resource fork.
The Culprit
Thanks for the info. So Apple 'simply' has to stop considering files which have ‘icns' and ‘usro' resources pointing to Terminal.app as 'safe' files.
& Mail.app !?
I think there is a risk with mail too : if you receive a mail with a movie icon and that file's name is somethings.mov and the fake is credible (imagine a mac-related mailling-list sending a video about security on Mac !), you can't know it's a shell script unless you download it, then hit command+I, insted of just double-clic on it
Resource Forks!!
It seems to me that there are several problems that all go back to one central issue: resource forks! Mac OS X uses the file extension to determine which app to use if a file does not have a resource fork. If a file has a resource fork, the application associated with the file can be different from the application associated with the extension. You set this in the Finder Get Info menu by changing the Open with option. Usually this is not an issue because files that arrive by download, E-mail, or other means come without resource forks. There are some exceptions, though. Resource forks can be included in ZIP archives, and BOMArchiveHelper.app reconstructs them for the extracted files. Mail.app can handle resource forks as well. I am sure there are others, too. This is a huge problem.
Resource Forks!!
Exactly - anything else but changing from HFS to a proper POSIX compliant Unix file system (without resource forks) will be a short term fix till the next exploit comes along - this was only a POC - once it is realised how easy it is to exploit Macs the fun will begin. It's time to say goodbye to Classic and to take the OS that Next developed and match it to a proper secure Unix file system where this type of nonsense just wouldn't happen.
& Mail.app !?
Yeah, Mail.app is a much more secure hole than Safari: |
SearchFrom our Sponsor...Latest Mountain Lion HintsWhat's New:HintsNo new hintsComments last 2 daysLinks last 2 weeksNo recent new linksWhat's New in the Forums?
Hints by TopicNews from Macworld
From Our Sponsors |
|
Copyright © 2014 IDG Consumer & SMB (Privacy Policy) Contact Us All trademarks and copyrights on this page are owned by their respective owners. |
Visit other IDG sites: |
|
|
|
Created this page in 0.08 seconds |
|