Vulnerability Note VU#773190

Mac OS X Safari "Show in Finder" option may allow arbitrary file execution

Overview

Mac OS X Safari "Show in Finder" option may automatically open and execute downloaded files. This could allow an attacker to execute arbitrary code.

I. Description

Safari is the default web browser for Mac OS X. Safari has a "Show in Finder" option to allow users to automatically reveal the location of downloaded files in a Finder (the default OS X file browser) window. This feature is flawed as Finder may attempt to automatically open and execute certain types of files when the location is revealed.

II. Impact

An attacker may be able to execute arbitrary code since certain files may automatically open without verification of their contents.

III. Solution

Apple has released a security update labeled APPLE-SA-2004-06-07 to address this issue. Information regarding the update can be found at http://docs.info.apple.com/article.html?artnum=25785.

Systems Affected

Vendor	Status	Date Updated
Apple Computer Inc.	Vulnerable	24-Aug-2004

References

http://docs.info.apple.com/article.html?artnum=25785
http://www.osvdb.org/displayvuln.php?osvdb_id=8432

Credit

This vulnerability was publicly reported by Apple Product Security.

This document was written by Jeff Gennari.

Other Information

Date Public	06/07/2004
Date First Published	08/24/2004 04:28:55 PM
Date Last Updated	09/07/2004
CERT Advisory
CVE-ID(s)	CAN-2004-0539
NVD-ID(s)	CAN-2004-0539
US-CERT Technical Alerts
Metric	0.27
Document Revision	121

If you have feedback, comments, or additional information about this vulnerability, please send us email.

Get Adobe Reader