Leopard Mail May Include Tiger Security Flaw
Leopard Mail May Include Tiger Security Flaw
by , 9:40 AM EST, November 21st, 2007
Heise Security says Apple's Mail application in Mac OS X 10.5 may include a security flaw that the company previously patched in Mac OS X 10.4. The flaw could allow an attacker to trick Mail users into running an application by disguising it as a JPEG email attachment.
Apple patched the flaw in Tiger's Mail application in March 2006, but somehow it seems the same security hole was reintroduced when Leopard shipped at the end of October.
The security company has developed a demonstration showing the flaw. The demonstration emails a harmless attachment that launches the Terminal application and displays the contents of the current directory.
This potential security flaw appears to impact Leopard users only. Tiger users with current updates installed are not impacted.
Recent TMO Headlines - Updated May 21st
- Fri, 3:46 PM
- EU Looking to Force Apple to Give Developers Access to All Software and Hardware Features
- Fri, 2:47 PM
- Apple Music's 'Essential Anniversaries' Explores Radiohead's Famous 'OK Computer'
- Fri, 2:00 PM
- 'WandaVision' Director Matt Shakman Set to Direct Godzilla Series for Apple TV+
- Fri, 1:24 PM
- iPhone OLED Manufacturer BOE Gets Put in Time-Out for Changing Panel Designs
- Fri, 10:06 AM
- T-Mobile iPhone Users Plagued by iMessage Deactivation Due to eSim Bug
- Fri, 8:55 AM
- Apple Stops Accepting Card Payments in India Due to New Banking Regulations
- Fri, 8:47 AM
- Apple Music Integration Will Be Available Into the Infotainment System of Select Audi Models
- Thu, 4:52 PM
- Review: Anker 622 Magnetic Battery (MagGo)
- Thu, 4:49 PM
- These 5 Tips Will Help You Maximize Your FaceTime Call
- Thu, 3:10 PM
- Apple Receives Second Union-Busting Charge, This Time at World Trade Center Store
- Thu, 2:58 PM
- Apple Shows Mixed Reality Headset to Board, Edging Closer to Launch
- Thu, 1:45 PM
- Apple TV+ Announces Premiere Date for Season Three of 'Trying'
