Vulnerability Note VU#774345

Apple Mac OS X fails to properly handle a crafted URL

Overview

A vulnerability in the way Apple Mac OS X handles specially crafted URLs may allow an attacker to execute arbitrary code.

I. Description

According to Apple Security Update 2008-001:

An input validation issue exists in the processing of URL schemes handled by Terminal.app. By enticing a user to visit a maliciously crafted web page, an attacker may cause an application to be launched with controlled command line arguments, which may lead to arbitrary code execution.

Note that this vulnerability affects Apple Mac OS X v10.4.11, Mac OS X Server v10.4.11, Mac OS X v10.5 and v10.5.1, and Mac OS X Server v10.5 and v10.5.1.

II. Impact

A remote, unauthenticated attacker may be able to execute arbitrary code.

III. Solution

Apply an update

This issue is addressed in Apple Security Update 2008-001 and Apple Mac OS X 10.5.2.

Systems Affected

Vendor	Status	Date Notified	Date Updated
Apple Computer, Inc.	Vulnerable	12-Feb-2008

References

http://docs.info.apple.com/article.html?artnum=307430
http://docs.info.apple.com/article.html?artnum=307109

Credit

This issue was reported in Apple Security Update 2008-001. Apple credits Olli Leppanen of Digital Film Finland and Brian Mastenbrook for reporting this issue.

This document was written by Chris Taschner.

Other Information

Date Public:	2008-02-12
Date First Published:	2008-02-12
Date Last Updated:	2008-02-12
CERT Advisory:
CVE-ID(s):	CVE-2008-0042
NVD-ID(s):	CVE-2008-0042
US-CERT Technical Alerts:
Metric:	20.20
Document Revision:	4

If you have feedback, comments, or additional information about this vulnerability, please send us email.

Produced 2008 by US-CERT, a government organization
Disclaimers and copyright information

Get Adobe Reader