DrJägermeister Posted February 21, 2006 Share Posted February 21, 2006 Apple Safari browser automatically executes shell scripts, if you don't deactivate the option "Open 'safe' files after downloading" BTW, don't go online as root (no matter what kind of OS) http://www.heise.de/english/newsticker/news/69862 Link to comment Share on other sites More sharing options...
domino Posted February 21, 2006 Share Posted February 21, 2006 Yea, I always hated that option. You never know what script comes out of auto-mounting, and opening safe files after downloading. Not only Safari does this, download managers, Shiira, and Camino as well. Link to comment Share on other sites More sharing options...
DrJägermeister Posted February 21, 2006 Author Share Posted February 21, 2006 One more: The flaw in Mac OS X concerns also Apples E-Mail program. Apart from the attack possibility over the Web Browser safari, also Apple Mail is starting shell scripts. Only camouflage a script with the ending "jpg" as picture and specify over the Mac OS Finder the "terminal" as program which is used to open this file. If soneome sends the script away now as mail appendix coded in the format AppleDouble, then also the information that the terminal is used to open the file, moves to the receiver. Apples Mail indicates the appendix only as a "normal" .jpg picture. Simply click on it and the script will start without demand in the terminal. The link in German: http://www.heise.de/newsticker/meldung/69894 Be aware, a .jpg (maybe it can be another extentions) you received via Mail (it is not really a picture but a shell script) can maybe kill your OSX86 (if you are admin) or delete your data in your home folder. It's very simple to do. Link to comment Share on other sites More sharing options...
zhense Posted February 23, 2006 Share Posted February 23, 2006 http://secunia.com/advisories/18963 Secunia has constructed a test, which can be used to check if your system is affected by this issue: http://secunia.com/mac_os_x_command_execut...erability_test/ Link to comment Share on other sites More sharing options...
zhense Posted February 23, 2006 Share Posted February 23, 2006 What is Safe Terminal? Safe Terminal fixes a security weakness with the Terminal utility, when it execute shell scripts without the user permission. If Safari "Open safe files after download" is enabled, its possible to create malicious shell scripts that will be executed by the Terminal automatically after you download them. It is also possible to create malicious shell scripts that look like plain documents, that will be executed by Terminal on double click without warning. After Safe Terminal is installed, the Terminal utility will not execute any file, even if "Open safe files after download" option in Safari is enabled. However, the usage of the Terminal to type and run commands is not effected in any way. http://nirs.freeshell.org/safe-terminal/ Link to comment Share on other sites More sharing options...
ZX81 Posted February 23, 2006 Share Posted February 23, 2006 What is Safe Terminal? Safe Terminal fixes a security weakness with the Terminal utility, when it execute shell scripts without the user permission. If Safari "Open safe files after download" is enabled, its possible to create malicious shell scripts that will be executed by the Terminal automatically after you download them. It is also possible to create malicious shell scripts that look like plain documents, that will be executed by Terminal on double click without warning. After Safe Terminal is installed, the Terminal utility will not execute any file, even if "Open safe files after download" option in Safari is enabled. However, the usage of the Terminal to type and run commands is not effected in any way. http://nirs.freeshell.org/safe-terminal/ Is this safe to use? Have you tried it? Will it have any negative impact on working with loads/reloads of OSX86? (can I still use terminal to load kexts?) I tried the test and I do see the calculator, so I am vunerable just now Link to comment Share on other sites More sharing options...
A Nonny Moose Posted February 24, 2006 Share Posted February 24, 2006 I use SafeTerminal and Paranoid Android. Between the two, nothing goes unnoticed. Link to comment Share on other sites More sharing options...
Recommended Posts