Safari User-Assisted Applescript Exec Attack

Posted by deepcore on October 24, 2015 – 8:21 am

In versions of Mac OS X before 10.11.1, the applescript:// URL scheme is provided, which opens the provided script in the Applescript Editor. Pressing cmd-R in the Editor executes the code without any additional confirmation from the user. By getting the user to press cmd-R in Safari, and by hooking the cmd-key keypress event, a user can be tricked into running arbitrary Applescript code. Gatekeeper should be disabled from Security and Privacy in order to avoid the unidentified Developer prompt.

Tags: Apple, ios, osx
This post is under “Apple” and has no respond so far.
If you enjoy this article, make sure you subscribe to my RSS Feed.

Post a reply

You must be logged in to post a comment.

« [webapps] – Liferay 6.1.0 CE – Privilege Escalation Apple Security Advisory 2015-10-21-8 »

:: Deepquest ::

This site contains information which could be considered illegal in some countries. It is provided here for educational use only and is not intended to be used for illegal activities.

Safari User-Assisted Applescript Exec Attack

Post a reply

Tabs Switcher

Categories

Archives

Meta

BLOGROLL