mamamusings: serious os x security problem:
If you’re an OS X user, it’s extremely important for you to be aware of a security vulnerability that’s been identified by users but not acknowledged or corrected by Apple.
The proof of concept is harmless but effective: go get the fix.
This is for real, and potentially nasty.
I have yet to see any reports of the exploit actually being used maliciously, but it’s worth protecting against. Here are a few simple things you can do to protect your system:
# RCDefaultApp, a free System Prefs panel from Rubicode. Install it in the PreferencePanes folder in your Library folder.
# Open System Prefs, then open the new Default Apps panel.
# Click on the “URLs” tab.
# Set the ‘disk:’, ‘disks:’, and ‘help:’ protocols to “<disabled>”.