Linked by Amjith Ramanujam on Thu 24th Jul 2008 18:01 UTC, submitted by Ward D
Bugs & Viruses Mac Antivirus developer Intego might have stumbled across an OS X specific virus being offered for auction that targets a previously unknown ZIP archive vulnerability. From Intego's posting, it appears that an enterprising auctioneer seems determined to make sure that his name is one that is not forgotten when it comes to Apple security, claiming that his exploit is a poisoned ZIP archive that will "KO the system and Hard Drive" when unarchived.
Thread beginning with comment 324396
To read all comments associated with this story, please click here.
A ZIP bomb maybe?
by evangs on Thu 24th Jul 2008 20:39 UTC
evangs
Member since:
2005-07-07

Compress a huge terabyte text file that contains nothing but 0s and then get the user to decompress it? That would totally fsck up a system. In lieu of any more details, it's hard to know what exploit this is.

Reply Score: 3

RE: A ZIP bomb maybe?
by henrikmk on Fri 25th Jul 2008 11:37 in reply to "A ZIP bomb maybe?"
henrikmk Member since:
2005-07-10

That would totally fsck up a system.


It would more likely just report that the disk ran full or that there is not enough diskspace to decompress it, assuming that ZIP reports the file size back to the system before attempting to uncompress it. ZIP can't harm a system that way.

Reply Parent Score: 2