CVE-2010-0497 Information

Description

Disk Images in Apple Mac OS X before 10.6.3 does not provide the expected warning for an unsafe file type in an internet enabled disk image which makes it easier for user-assisted remote attackers to execute arbitrary code via a package file type.

Reference

http://lists.apple.com/archives/security-announce/2010//Mar/msg00001.html http://support.apple.com/kb/HT4077