Linked by Amjith Ramanujam on Thu 24th Jul 2008 18:01 UTC, submitted by Ward D
Bugs & Viruses Mac Antivirus developer Intego might have stumbled across an OS X specific virus being offered for auction that targets a previously unknown ZIP archive vulnerability. From Intego's posting, it appears that an enterprising auctioneer seems determined to make sure that his name is one that is not forgotten when it comes to Apple security, claiming that his exploit is a poisoned ZIP archive that will "KO the system and Hard Drive" when unarchived.
Thread beginning with comment 324470
To view parent comment, click here.
To read all comments associated with this story, please click here.
RE: This should get far
by Morgan on Fri 25th Jul 2008 01:19 UTC in reply to "This should get far"
Morgan
Member since:
2005-06-29

Excellent point. I'd also like to know how a "virus" unleashed by opening a Zip archive can possibly escalate to root privileges without some level of social engineering. It has to ask for my password at some point, and since no Zip archive ever does that, it would immediately be suspect.

Reply Parent Score: 4

RE[2]: This should get far
by flakron.bytyqi on Fri 25th Jul 2008 11:27 in reply to "RE: This should get far"
flakron.bytyqi Member since:
2008-07-24

a story : Bob 6-pack
downloads a zip, saying "a nude hot super star"
he's lucky ain't he??? Extracts the damn thing, asks for the root password, TAKE IT gimme the photos b*atch!!!
BOOOM, infected

The user is the problem, very very often. Very rarely it's the OS be it Windows, GNU/Linux or Mac OS

Reply Parent Score: 1