[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Full-disclosure] Question about Mac OS X 10.4 Security

To: Untitled <full-disclosure@xxxxxxxxxxxxxxxxx>
Subject: Re: [Full-disclosure] Question about Mac OS X 10.4 Security
From: "KF (lists)" <kf_lists@xxxxxxxxxxxxxxxxxxx>
Date: Tue, 28 Feb 2006 10:49:09 -0500

I think you're living in a fantasy world. The recent vulnerability,which allows the running of arbitrary code simply by clicking on alinked zip file will probably result in at least a handful of newviruses/worms for the Mac platform within the next week or two.

I agree 100% . Zip file / metadata bug added to a malicious InputManager, fucked up dyld file or environment.plist is like instant IE stylepopup city for Mac users running Safari. It would literally take about20 minutes to put something together.


-KF

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

References:
- Re: [Full-disclosure] Question about Mac OS X 10.4 Security
  - From: Paul Schmehl

Prev by Date: Re: [Full-disclosure] Question about Mac OS X 10.4 Security
Next by Date: Re: [Full-disclosure] Question about Mac OS X 10.4 Security
Previous by thread: Re: [Full-disclosure] Question about Mac OS X 10.4 Security
Next by thread: Re: [Full-disclosure] Question about Mac OS X 10.4 Security
Index(es):
- Date
- Thread