• Downloads
  • Threats
    • Adware
    • Browser Hijacking
    • Phishing
    • Ransomware
  • Questions and Answers
  • Recover Encrypted Files
  • Free Malware Removal Tools

MyAntiSpyware
Menu
  • Downloads
  • Threats
    • Adware
    • Browser Hijacking
    • Phishing
    • Ransomware
  • Questions and Answers
  • Recover Encrypted Files
  • Free Malware Removal Tools

Mac OS X File Association Meta Data Shell Script Execution

Myantispyware team February 23, 2006    

Michael Lehn has discovered a vulnerability in Mac OS X, which can be exploited by malicious people to compromise a user’s system.

The vulnerability is caused due to an error in the processing of file association meta data in ZIP archives (stored in the “__MACOSX” folder) and mail messages (defined via the AppleDouble MIME format). This can be exploited to trick users into executing a malicious shell script renamed to a safe file extension stored in a ZIP archive or in a mail attachment.

This can also be exploited automatically via the Safari browser when visiting a malicious web site.

Secunia has constructed a test, which can be used to check if your system is affected by this issue.

Exploits & Vulnerabilities

 Previous Post

New rogue Anti Spyware – “The Spyware Shield”

Next Post 

Panda DesktopSecure for Linux workstations

Author: Myantispyware team

Myantispyware is an information security website created in 2004. Our content is written in collaboration with Cyber Security specialists, IT experts, under the direction of Patrik Holder and Valeri Tchmych, founders of Myantispyware.com.

Leave a Reply Cancel reply

New Guides

Toobitx.com Scam, Fake STARLINK 0.31 BTC Promo Codes
scam alert
Zonelax.com Scam Alert: Fake Bitcoin Promo Codes
MemoMaster Reviews, Scam or Legit, Uncovering the Truth!
How to remove Undentory.com pop-up ads
scam alert
How to remove Unbitioid.com pop-up ads

Follow Us

Search

Useful Guides

How to reset Internet Explorer settings to default
How to remove pop-up ads [Chrome, Firefox, IE, Opera, Edge]
DNSChanger
How to remove DNSChanger malware virus [Updated Apr. 2018]
This setting is enforced by your administrator (Removal guide)
browser redirect virus
How to remove Browser redirect virus [Chrome, Firefox, IE, Edge]

Recent Guides

New rogue Anti Spyware – “The Spyware Shield”
New variant W32/Feebs found
Multiple vulnerabilities in WinAmp – Affected all versions (including 5.13)
Leap.A – Worm for Mac OS X
Found DVD disks contains a copy protection mechanism which uses rootkit-like cloaking technology.

Myantispyware.com

Myantispyware has been a trusted source for computer security and technology advice since 2004. Our mission is to provide reliable tech guidance and expert, practical solutions to help you stay safe online and protect your digital life.

Social Links

Pages

About Us
Contact Us
Privacy Policy

Copyright © 2004 - 2024 MASW - Myantispyware.com.