?

Log in

No account? Create an account
IBNeko's Journal-Nyo~!
01:42 pm February 21st, 2006
ibneko
ibneko
Share
Regarding the recent MacOS X Exploit
Secunia (security-bug-whatnot site that I follow) has released a Vulnerability test for the Safari command execution exploit.

http://secunia.com/mac_os_x_command_execution_vulnerability_test/

The current available solution:
Solution:
The vulnerability can be mitigated by disabling the "Open safe files after downloading" option in Safari.

--
Or use firefox. Maybe. I dunno. Will test that... maybe much later.

Tags: , , ,

1 happy kitten | Leave catnip
Comments
Comment by Frederic Barthelemy
fbartho From: fbartho Date: February 21st, 2006 09:24 pm (UTC) (Link)
these are directions on how to make your own exploit for this, so you are certain what's in the files, the link on secunia is just a launch command for calculator.app, and on another link in slashdot for Heiser-something was just a jpg that did ls -al and echo "some german message"

http://apple.slashdot.org/comments.pl?sid=178068&cid=14767986
(Reply) (Thread)
1 happy kitten | Leave catnip
entries
friends
calendar
profile
Next Next
Previous Previous
profile
Benjamin Juang
User: ibneko
Name: Benjamin Juang
The Wizard's Oath, species-nonspecific recension
In Life's name, and for Life's sake, I assert that I will employ the Art which is its gift in Life's service alone. I will guard growth and ease pain. I will fight to preserve what grows and lives well in its own way; Nor will I change any creature unless its growth and Life, or that of the system of which it is part, are threatened. To these ends, in the practice of my Art, I will ever put aside fear for courage, and death for Life, when it is fitting to do so- looking always toward the Heart of Time, where all our sundered times are one, and all our myriad worlds lie whole, in that from which they proceeded...
entries
friends
calendar
profile
Next Next
Previous Previous
page summaries
tags