Existing users, log in.  New users, create a free account.  Lost password?

Mac OS X  |  Security / Privacy  |  Other Security / Privacy  |  helpvulnerabilityfixer

helpvulnerabilityfixer

helpvulnerabilityfixer - 0.01

toggle auto script launch from help viewer

Download Now Download Now

(File Size: 34k)

Free Product Alerts!

Register for free to receive alerts when helpvulnerabilityfixer is updated.
All Time: Not rated (0.0)
This Version: Not rated (0.0)
Current Version: 0.01
Release Date: 2004-05-24
License: Freeware
Downloads (this version): 880
Downloads (all versions): 880
Price: null

Information Related to Version:

Broken Link? Newer Version? Tell us!

Product Description:

I whipped up a small Apple Script app for myself, that simply turns on and off the preference within Help Viewer that allows it to automatically launch external scripts and which has been causing such a fuss as being a gaping security hole in OS X (even though I don't know of any real world exploits of this vulnerability that are in existence). In any case, all the scripts do is take the following command line code and wrap it in a script: sudo defaults write '/System/Library/CoreServices/Help Viewer.app/Contents/Info' NSAppleScriptEnabled -bool 'no'
Choosing OFF runs the above command, whereas choosing ON runs the same command with 'yes' substituted for 'no.' Boringly simple. Got the info from MacFixIt.

Operating System Requirements:

This product is designed to run on the following operating systems:

  • Mac OS X 10.3
  • Mac OS X 10.2

Additional Requirements:

  • Mac OS X 10.2 or higher

Screenshots:

Developer: Submit screenshots for helpvulnerabilityfixer

Download Links:

Download helpvulnerabilityfixer Now (File Size: 34k)

Your Installed Versions:


 
Show All Feedback (2)Search FeedbackSearch Feedback

Feedback Summary:

This Version:
Overall Rating: Not rated (0.0) Features: Not rated (0.0) Support: Not rated (0.0)
Ease of Use: Not rated (0.0) Quality / Stability: Not rated (0.0) Price: Not rated (0.0)
Add Your Feedback

Key to Types of Feedback:

ReviewsReviews   TroubleshootingTroubleshooting   Usage TipsUsage Tips   Developer NotesDeveloper Notes   CommentaryCommentary   Featured ReviewsFeatured Reviews

helpvulnerabilityfixer CommentaryCounterproductive - Version: 0.01, 5/24/2004 11:22AM PST

(1 of 1 users found this comment useful)

Eridius
This is extremely useless. Apple has already released a security update which closes this hole. Even worse, this is counterproductive, because it's ignoring the other holes (which are still open and are actually worse than the Help Viewer hole). Daring Fireball has a nice writeup about how to close the other holes. Alternately, just install Paranoid Android.
Post a commentAlert Admin

helpvulnerabilityfixer CommentaryNot sure if this is necessary. - Version: 0.01, 5/24/2004 11:22AM PST

(0 of 1 users found this comment useful)

Saints1
I am pretty sure that the last Security Update from Apple resolved this issue.
Post a commentAlert Admin