[Am-info] First "auto-download" vulnerability in OS X

[Sujal Shah]

On Thu, 2002-02-28 at 09:49, Sujal Shah wrote:
> 
> http://online.securityfocus.com/archive/1/258638
> 
> Found via /. ( http://slashdot.org/article.pl?sid=02/02/28/0343241 ).
> 
> Short version, turn of autoplay in QT prefs.  Seems like IE and some
> other browsers are too eager to automatically download .sit (StuffIt
> archives) files and run them.  I think this basically has to do with a
> cracker taking advantage of the .dmg file convention in Mac OS to fool
> QT into running stuff.
> 
> Of note:  the only browser that is central to all the vulnerabilities is
> IE, and Netscape/Mozilla are the only ones that across the board offer a

Just wanted to clarify that... part of this problem is the default
config of IE (where have we heard that before), and the fact that it's
the default browser on the Mac. That's what I mean by central.  Though
mozilla, OmniWeb, and other are susceptible, it is inconsistent and will
most likely have a user that is more savvy (since they thought to
download another browser).

Does anyone know what, if any, bad things happen if I delete IE on Mac
OS X?

Sujal 

> dialog before actually doing the download (though they can still be a
> channel if the user tells Mozilla to always download .sit files without
> asking, I would think).
> 
> Sujal
> 
> 
> 
> _______________________________________________
> Am-info mailing list
> Am-info@lists.essential.org
> http://lists.essential.org/mailman/listinfo/am-info