Unrated severityNVD Advisory· Published Feb 22, 2006· Updated Jun 16, 2026

CVE-2006-0848

Description

The "Open 'safe' files after downloading" option in Safari on Apple Mac OS X allows remote user-assisted attackers to execute arbitrary commands by tricking a user into downloading a __MACOSX folder that contains metadata (resource fork) that invokes the Terminal, which automatically interprets the script using bash, as demonstrated using a ZIP file that contains a script with a safe file extension.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

Apple Inc./Mac OS X
cpe:2.3:o:apple:mac_os_x:10.4.5:*:*:*:*:*:*:*
Apple Inc./Mac OS X Server
cpe:2.3:o:apple:mac_os_x_server:10.4.5:*:*:*:*:*:*:*
Apple Inc./Safarillm-fuzzy

Patches

Vulnerability mechanics

No source-code context for this CVE — mechanics is only generated when we can read the actual fix diff. Without that, the four sections (root cause, attack vector, affected code, fix) would be speculation rather than analysis.

References

securitytracker.com/idnvdExploit
www.frsirt.com/exploits/20060222.safari_safefiles_exec.pm.phpnvdExploitVendor Advisory
www.securityfocus.com/bid/16736nvdExploit
secunia.com/advisories/18963nvdVendor Advisory
www.kb.cert.org/vuls/id/999708nvdThird Party AdvisoryUS Government Resource
www.us-cert.gov/cas/techalerts/TA06-053A.htmlnvdThird Party AdvisoryUS Government Resource
www.vupen.com/english/advisories/2006/0671nvdVendor Advisory
www.us-cert.gov/cas/techalerts/TA06-062A.htmlnvdUS Government Resource
docs.info.apple.com/article.htmlnvd
www.heise.de/english/newsticker/news/69862nvd
www.mathematik.uni-ulm.de/numerik/staff/lehn/macosx.htmlnvd
www.osvdb.org/23510nvd
exchange.xforce.ibmcloud.com/vulnerabilities/24808nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.046
exploit	0.030
kev	0.000
patch	0.000
ransomware	0.000