ID | CVE-2006-0848 | ||||||
Sažetak | The "Open 'safe' files after downloading" option in Safari on Apple Mac OS X allows remote user-assisted attackers to execute arbitrary commands by tricking a user into downloading a __MACOSX folder that contains metadata (resource fork) that invokes the Terminal, which automatically interprets the script using bash, as demonstrated using a ZIP file that contains a script with a safe file extension. | ||||||
Reference |
|
||||||
CVSS |
|
||||||
Pristup |
|
||||||
Impact |
|
||||||
CVSS vektor | AV:N/AC:H/Au:N/C:P/I:P/A:P | ||||||
Zadnje važnije ažuriranje | 20-07-2017 - 01:30 | ||||||
Objavljeno | 22-02-2006 - 23:02 |