The Mac Observer

Skip navigational links

You're viewing an article in TMO's historic archive vault. Here, we've preserved the comments and how the site looked along with the article. Use this link to view the article on our current site:
Leopard Mail May Include Tiger Security Flaw

Leopard Mail May Include Tiger Security Flaw

by , 9:40 AM EST, November 21st, 2007

Heise Security says Apple's Mail application in Mac OS X 10.5 may include a security flaw that the company previously patched in Mac OS X 10.4. The flaw could allow an attacker to trick Mail users into running an application by disguising it as a JPEG email attachment.

Apple patched the flaw in Tiger's Mail application in March 2006, but somehow it seems the same security hole was reintroduced when Leopard shipped at the end of October.

The security company has developed a demonstration showing the flaw. The demonstration emails a harmless attachment that launches the Terminal application and displays the contents of the current directory.

This potential security flaw appears to impact Leopard users only. Tiger users with current updates installed are not impacted.

Recent TMO Headlines - Updated January 23rd

Fri, 4:33 PM
How To Maximize the Good From AI Augmenting Humanity - A Quick Take
Fri, 3:43 PM
Someone Reverse Engineered 'Wordle', Here are the Secrets
Fri, 3:23 PM
Merck Wins Court Dispute Over 'NotPetya' Attack
Fri, 2:48 PM
YouTuber Ruben Sim Must Pay Roblox Over 'Cybermob'
Fri, 1:53 PM
Security Friday: This Week in (Sad) Data Breaches – TMO Daily Observations 2022-01-21
Fri, 1:52 PM
What You Need to Know About HP+ Smart Printer Solution
Fri, 1:42 PM
Apple Stopping Providing HeadPhones With iPhones in France
Fri, 11:32 AM
Congress Explores Blockchain Energy Usage From Mining
Fri, 11:25 AM
Intel Plans Ohio Factory for Semiconductor Fabrication
Fri, 10:44 AM
New 'Monsterverse' Series Coming to Apple TV+
Fri, 9:57 AM
Red Cross Data Breach Affects 515,000 Vulnerable People
Fri, 7:14 AM
Apple TV+: 'Servant' Season Three Now Available
  • __________
  • Buy Stuff, Support TMO!
  • Podcast: Mac Geek Gab
  • Podcast: Daily Observations
  • TMO on Twitter!