Where exactly is the coding mistake in this instance?
The article itself states:Furthermore......there is nothing fundamental about the architecture of Linux that prevents user stupidity or ignorance, which is of course the main ingredient in any attack vector like this.Finally...There is just one small stumbling block, which needs to be overcome. Well, two, actually.This isn't a coding issue; this PEBCAK: Problem Exists Between Chair And Keyboard. Remove any single user error, and there's plenty to choose from it seems, and this attack fails.And here then is one more step that needs to be taken by the user, which might reduce the success rate of this attack vector a little. The user has to first save the attachment and then double click on it.
Utterly... FAILS.
Bookmarks