Everyone read this, exploit!!

sailfish · May 17, 2004 5:52PM

There is a very serious exploit, either turn your Mac OS X help viewer completely "no access" via permissions (record the settings) or remove it from your computer. Save it on cd.

Just by visiting a web site, a dmg will download in seconds and execute code.

http://www.insecure.ws/article.php?s...04051612423136

See here for proof of concept. (it's harmeless)

http://www.free-go.net/insecure/safari/0x04_test.html

Iv'e said it before and I'm saying it again, Apple you need to employ a system level check that will halt malicious or compromised websites from automatically downloading material to our computers.

You also need to employ a outgoing optional check as well, like Little Snitch does.

We love you and your no where as dangerous as Microsoft software.

But get the word out now! Thank you.

kickaha · May 17, 2004 5:59PM

Crap, that's nasty.

Thanks for the pointer.

buckeye · May 17, 2004 7:15PM

Macbidouille suggested this app: More Internet

whisper · May 18, 2004 12:02PM

Oooh... I bet I can use this to mess with my parents' minds...

sailfish · May 18, 2004 4:41PM

The More Internet app is good. You change your browser from opening the Help Viewer to say Text Edit. This will sure give you a heads up that someone is bent upon your destruction.

Problem is Help Viewer still runs scripts.

My choice? I say we leave and nuke the whole site from orbit.

It's the only way to make sure.

curiousuburb · May 18, 2004 5:15PM

Apple's Discussion Boards are still talking about this, but currently seem to be recommending:

"Don't Go There GURLFriend" (whose top link leads to .dmg with before & after testing function for validation)

tested myself and it seems to fix the problem beyond what unticking safari's 'open safe after d/l" does

YMMV

talksense101 · May 19, 2004 2:13AM

Nasty bug. I am happy for one that OS-X is being used enough for all these security issues to be identified and resolved. The only comforting feeling is that the base OS is still Unix and that limits the damage a virus can do.

On the other hand, Apple needs to spend more effort on security considerations while adding features to the product. We don't want to be degraded to the M$ scenario.

nebagakid · May 19, 2004 10:48AM

it isn't a bug., but a feature that is improperly placed.

heh. Help Viewer crashed when I opened it

curiousuburb · May 19, 2004 12:15PM

More Internet Prefpane seems upon testing to be a more thorough fix for now

crazychester · May 19, 2004 8:01PM

OK so I've done this. Here http://mamamusings.net/archives/2004...oblem.php#2949 suggested using Chess as it gives you a visual cue. So did that, ran the test, Chess opens.

That means it worked, right?

But a guy on that web page says you should do it for disk: protocol as well. What's the disk: protocol? There's nothing called that in the Moire Prefs pane.

sailfish · May 20, 2004 4:00PM

Sure this may block a browser from accessing the flaw in the Help Viewer, but what's preventing that other "exploit" from doing the same?

Or exploiting a flaw in Mail or anything else to get Help Viewer to run scripts?

Somebody already has reported they got a gif in a email and Help Viewer opened and wiped their home directory.

wrong robot · May 20, 2004 4:31PM

there goes apple's good reputation.

already on TechTv I saw a graphic of the Apple apple riddled with holes like swiss cheese.

bummer.

sailfish · May 21, 2004 7:32PM

Apple has provided a Software Update

Repair permissions and apply.

mpmoriarty · May 22, 2004 12:48PM

You know, it was bound to happen. I even expected Mac OS X to start being affected by exploits and such. Every operating system has them. But here is what you look at...

1) How many exploits are found and the severity of them

2) How fast Apple plugs these exploits

3) How much safer the OS is after the security patch.

Mac OS X is software. Software has holes in it. Apple will fill them up.

I feel so much safer on Mac OS X than I ever did on Windows.

Mike

Everyone read this, exploit!!

Comments