Now that apple's released a fix themselves, everyone just click restore at some point, and everything will be as it was. It was a fun ride, and I'm glad to have helped anyone DGTGF helped. Apple's patch seems to be great.
The simplest fix for the Help system code execution vulnerability is to run the following in Terminal:
sudo defaults write /System/Library/CoreServices/Help\ Viewer.app/Contents/Info NSAppleScriptEnabled -bool 'no'
This does not stop disk images from downloading but any malicious payload cannot run without user intervention.
The only thing you need to do is:
1) Open up your moldy old copy of Explorer 5.2
2) Go to preferences->network->protocol helpers and change it to Finder or Chess or whatever
3) Quit Explorer and go back to Safari
(5/19/2004, Version: 1.1)
I woiuldn not be too complacent about using a Mozilla or other non aplle webkit based browser. I use Firefox as my main browser with the stock security settings.
I visited here:
...and up popped the help app, followed by a terminal window executing a command I did not tell it to run.
Do not assume you are safe unless you have checked to see that you are.
Hopefully apple will fix this in a timely fashion before somone nasty decides to do something nasty.
Why don't people just use firefox and disable the helpers in the preferences - I went to the kerberos site mentioned above and all it launched was the help app, not kerberos. I believe that's a fix, no???
I am looking at this Safari exploit as Mac users usually look at Windows users when struck with Virus. I use Firefox and am in now way affected by this. I'd recommend Firefox to ANYONE over Safari...best browser in any platform...period.