CVE-2006-0848
CVE-2006-0848
The "Open 'safe' files after downloading" option in Safari on Apple Mac OS X allows remote user-assisted attackers to execute arbitrary commands by tricking a user into downloading a __MACOSX folder that contains metadata (resource fork) that invokes the Terminal, which automatically interprets the script using bash, as demonstrated using a ZIP file that contains a script with a safe file extension.
Affected products
n/a · n/apublic PoCs found — 1
exploitdbwww.exploit-db.com/exploits/16866unverified⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.
Want to know if your infrastructure is exposed to this?
Talk to TrueHacking →References
http://docs.info.apple.com/article.html?artnum=303382http://secunia.com/advisories/18963http://securitytracker.com/id?1015652https://exchange.xforce.ibmcloud.com/vulnerabilities/24808http://www.frsirt.com/exploits/20060222.safari_safefiles_exec.pm.phphttp://www.heise.de/english/newsticker/news/69862http://www.kb.cert.org/vuls/id/999708http://www.mathematik.uni-ulm.de/numerik/staff/lehn/macosx.htmlhttp://www.osvdb.org/23510http://www.securityfocus.com/bid/16736http://www.us-cert.gov/cas/techalerts/TA06-053A.htmlhttp://www.us-cert.gov/cas/techalerts/TA06-062A.html