The report claims the proof of concept works on all prior versions of macOS, but it doesn't seem to work (even with corrected path) on Tiger. Unfortunately due to packing I don't have a Leopard or Snow Leopard system running right now, so I can't test those, but the 10.4 Finder (which would launch these files) correctly complains they are malformed. As a safety measure in case there is something exploitable, the October SPR build of TenFourFox will treat both .webloc and .inetloc files that you might download as executable. (These files use similar pathways, so if one is exploitable after all, then the other probably is too.) I can't think of anyone who would depend on the prior behaviour, but in our unique userbase I'm sure someone does, so I'm publicizing this now ahead of the October 5 release. Meanwhile, if someone's able to make the exploit work on a Power Mac, I'd be interested to hear how you did it.
I couldn't get it to work on my Yosemite system.
ReplyDeleteInteresting. It's entirely possible this was a much more recent bug than the discoverers thought.
Delete[ChrisT.] 10.5.8: Finder says 'The Internet location file "rcetest.inetloc" cannot be opened because it is damaged.'
ReplyDelete10.11.6: Finder opens Calculator.
Looks like El Crapitan is where it started!
Delete