SecurityFocus

Re: .dmg file exploit Nov 21 2006 09:08PM
mfossi securityfocus com (2 replies)

Re: .dmg file exploit Nov 22 2006 03:05AM
Jason (security brvenik com) (1 replies)

Re: .dmg file exploit Nov 22 2006 04:04PM
Martin Roesch (roesch sourcefire com)

Re: .dmg file exploit Nov 21 2006 09:49PM
Roland Dobbins (rdobbins cisco com) (2 replies)

DNSSEC validation Sep 24 2008 07:20PM
Dave Piscitello (dave corecom com)

Re: .dmg file exploit Nov 22 2006 03:25PM
mfossi securityfocus com (1 replies)

Re: .dmg file exploit Nov 22 2006 04:04PM
Roland Dobbins (rdobbins cisco com) (1 replies)

Re: .dmg file exploit Nov 22 2006 06:02PM
Martin Roesch (roesch sourcefire com) (3 replies)

Re: .dmg file exploit Nov 22 2006 11:25PM
Eric Hall (securityfocus darkart com)

Re: .dmg file exploit Nov 22 2006 06:40PM
Jeramey Valley (ValleyJR mps k12 mi us) (1 replies)

Re: .dmg file exploit Nov 22 2006 08:23PM
Martin Roesch (roesch sourcefire com) (1 replies)

Re: .dmg file exploit Nov 22 2006 10:44PM
stephen joseph butler (stephen butler gmail com)

2006/11/22, Martin Roesch <roesch (at) sourcefire (dot) com [email concealed]>:
> Since Disk Utility can also cause the vulnerability to go off as
> well, hopefully there would be a convenient place to intercept the
> common mounting function that calls into the vulnerable filesystem
> driver. Once again, I don't know OS X's guts well enough to comment
> beyond that at this time.

I'm not positive, but Disk Utility and Finder may both call
diskimages-helper to do the actual work
("/System/Library/PrivateFrameworks/DiskImages.framework/Resources/diski
mages-helper").
One of these processes occurs for each imaging operation taking place
(create, mount, etc). If you knew how it worked (reading commands off
STDIN, perhaps?) then you could wrap it.

That is, assuming, that the problem happens somewhere within
diskimages-helper, and not before.

[ reply ]

Re: .dmg file exploit Nov 22 2006 06:37PM
Roland Dobbins (rdobbins cisco com) (1 replies)

Re: .dmg file exploit Nov 22 2006 08:29PM
Martin Roesch (roesch sourcefire com) (2 replies)

Re: .dmg file exploit Nov 23 2006 04:12AM
K F \(lists\) (kf_lists digitalmunition com)

Re: .dmg file exploit Nov 22 2006 08:45PM
Roland Dobbins (rdobbins cisco com) (1 replies)

Re: .dmg file exploit Nov 23 2006 10:15AM
Simon Slavin (s slavin lancaster ac uk) (1 replies)

Re: .dmg file exploit Nov 23 2006 07:53PM
K F \(lists\) (kf_lists digitalmunition com) (1 replies)

Re: .dmg file exploit Nov 23 2006 09:30PM
Howard Oakley (h oakley btconnect com) (1 replies)

Re: .dmg file exploit Nov 24 2006 03:12AM
K F (lists) (kf_lists digitalmunition com) (1 replies)

Re: .dmg file exploit Nov 24 2006 03:05PM
Simon Slavin (s slavin lancaster ac uk) (1 replies)

Re: .dmg file exploit Nov 24 2006 03:51PM
David Maynor (dmaynor gmail com) (1 replies)

Re: .dmg file exploit Nov 24 2006 03:56PM
Simon Slavin (s slavin lancaster ac uk)