21 Feb 2006

safari exploit! de ja vu?

hrmm, secunia has a report on a new exploit that allows someone to masquerade a shell script inside a zip file and have safari automatically open it.

i suppose this is slightly different from the automatically opening and installing of widgets when 10.4.0 was released. so if you use a mac, don't turn on "open safe files automatically" in safari's preference.

You can reply to me about this on Twitter: