updated 07:35 am EDT, Mon May 24, 2004
URI exploit in OS X
Secunia confirms that Apple's related to the previously outlined URI Handler Registration Code Execution Vulnerability, which it continues to describe as "extremely critical." Secunia says "this problem is escalated due to the fact that it by default is possible to silently download and mount disk images using two known methods (silent download and execution of "safe" files and the "disk" URI). Furthermore, it is reportedly also possible to mount volumes using other methods such as SMB, AFS, FTP, DAV and others."