Get our weekly newsletter file:// is blocked? Oh OK, we'll just use File:// or fiLE://...
Apple's macOS Finder application is currently vulnerable to a remote code execution bug, despite an apparent attempt to fix the problem. A security advisory published Tuesday by the SSD Secure Disclosure program, on behalf of researcher Park Minchan, explains that macOS Finder – which provides a visual interface for interacting with files – is vulnerable to documents with the .inetloc extension. "[T]hese files can be embedded inside emails which if the user clicks on them will execute the co...