• Downloads
  • Threats
    • Adware
    • Browser Hijacking
    • Phishing
    • Ransomware
  • Questions and Answers
  • Recover Encrypted Files
  • Free Malware Removal Tools

My AntiSpyware

Free antispyware software, Online Scanners, Instructions on how to remove spyware and malware.

Menu
  • Downloads
  • Threats
    • Adware
    • Browser Hijacking
    • Phishing
    • Ransomware
  • Questions and Answers
  • Recover Encrypted Files
  • Free Malware Removal Tools
Home › Exploits & Vulnerabilities › Mac OS X File Association Meta Data Shell Script Execution

Mac OS X File Association Meta Data Shell Script Execution

Myantispyware team February 23, 2006     No Comment    

Michael Lehn has discovered a vulnerability in Mac OS X, which can be exploited by malicious people to compromise a user’s system.

The vulnerability is caused due to an error in the processing of file association meta data in ZIP archives (stored in the “__MACOSX” folder) and mail messages (defined via the AppleDouble MIME format). This can be exploited to trick users into executing a malicious shell script renamed to a safe file extension stored in a ZIP archive or in a mail attachment.

This can also be exploited automatically via the Safari browser when visiting a malicious web site.

Secunia has constructed a test, which can be used to check if your system is affected by this issue.

Exploits & Vulnerabilities

Author: Myantispyware team

Myantispyware is an information security website created in 2004. Our content is written in collaboration with Cyber Security specialists, IT experts, under the direction of Patrik Holder and Valeri Tchmych, founders of Myantispyware.com.

Leave a Reply Cancel reply




New Guides

Netflix Membership Account on Hold Scam Text
Netflix Account on Hold Scam Text: A Phishing Threat to Your Personal and Financial Security
Onlinehome.us scams
Onlinehome.us Scam: What You Need to Know About Apple ID, Amazon, PayPal, Venmo, and Netflix Scams
AppCloudCloud.com malware
AppCloudCloud.com Pop-Up Redirect: How to Remove and Prevent Malicious Redirects
Undescoidecimy.com Click Allow Scam
Undescoidecimy.com Virus Removal Guide
Shareadeals.com niceebike website
Shareadeals.com Review: Is This Online Store a Scam?

Follow Us

Search

Useful Guides

Files encrypted by ransomware become useless
How To Recover Encrypted Files (Ransomware file recovery)
remove chrome extension
How to remove Chrome extensions installed by enterprise policy
This setting is enforced by your administrator (Removal guide)
Iphone Calendar virus spam
Iphone Calendar Virus/Spam 2022 (Removal guide)
How to remove pop-up ads [Chrome, Firefox, IE, Opera, Edge]

Recent Posts

New rogue Anti Spyware – “The Spyware Shield”
New variant W32/Feebs found
Multiple vulnerabilities in WinAmp – Affected all versions (including 5.13)
Leap.A – Worm for Mac OS X
Found DVD disks contains a copy protection mechanism which uses rootkit-like cloaking technology.

MYANTISPYWARE.COM

  • About Us
  • Contact Us
  • Privacy Policy

NEED A HELP ?

If you're seeing unwanted pop-ups or ads in your web-browser, you might have an adware installed on your computer. Use the following guide to stop pop-up ads and remove malicious software. Or ask for help here.

Links

  • Downloads
  • Instructions
  • Questions and Answers
  • Free Malware Removal Tools
Copyright © 2004 - 2022 Myantispyware.com - Free antispyware programs and Spyware Removal Instructions.