Apple Mac OS X Catalog and Distribution File Arbitrary Command Execution Weakness

info
discussion
exploit
solution
references

Apple Mac OS X Catalog and Distribution File Arbitrary Command Execution Weakness

Apple Mac OS X is prone to a weakness that may allow attackers to execute arbitrary commands.

Successfully exploiting this issue in conjunction with other latent vulnerabilities may allow an attacker to execute arbitrary commands on affected computers, provided that the 'allow-external-scripts' option is enabled.