View this article at: http://www.macnn.com/articles/05/05/09/tiger.dashboard.exploit/ Monday, May 09, 2005 8:05am Developer demos 'exploit' in Tiger's Dashboard One developer claims to have found a security hole in Apple's new Tiger operating system. According to his website, Apple's highly touted Dashboard technology, found in the new version of Mac OS X 10.4, has a security vulnerability that could cause malicious third-party sites to auto-install a Widget, a small program designed to display Internet content on the desktop. "If you're running Safari on OS X Tiger and go to this website, a 'slightly evil' Dashboard widget will be automatically downloaded and installed and can't be removed without manually removing the file from the Library folder and rebooting the computer." The author says it is a demonstration "how easy it is to exploit Dashboard for nefarious purposes." A subsequent discussion by the author outlines other "more evil" exploits of the security hole. Warning: the site will auto-install the 'zaptastic' widget and will require manual removal.