Leopard Mail Another Security Risk

closeThis post was published 11 years 17 days ago. A number of changes have been made to the site since then, so please contact me if anything is broken or seems wrong.

A Mail bug patched in Mac OS X 10.4 (Tiger) has been rediscovered in Leopard’s Mail program. The bug allows malicious code to be executed when opening certain types of email attachments, and was thought to be fixed until now.

The problem arises from improper handling of additional file-handling instructions included with file types such as JPEG. Malicious code can be inserted into the information slot, and will be executed when the file is opened. Fortunately, not all file types are affected, and the researchers at Heise Security had difficulties consistently reproducing the problem.

Does this mean the end of Macs-are-better-because-they-can’t-be-attacked fights?

dgw

I am an avid technology and software user, in addition to being reasonably well-versed in CSS, JavaScript, HTML, PHP, Python, and (though it still scares me) Perl. Aside from my technological tendencies, I am also a theatre technician, sound designer, violinist, singer, and actor.

One Comment:

  1. why of course this is the end of the Macs are better because they are secure argument.

    One minor hole in the built in mail program wich will be fixed very soon in an system update vrs hundreds of thousands of viruses and exploits on windows.

    Guess you showed them.

Leave a Reply

Your email address will not be published. Required fields are marked *

Notify me of followup comments via e-mail (or subscribe without commenting)

Comments are subject to moderation, and are licensed for display in perpetuity once posted. Learn more.