Apple has released Security Update 2010-003 (Snow Leopard) to address a critical vulnerability in the way Apple Type Services in Mac OS X 10.6 Snow Leopard parses embedded fonts. Users who view or download any documents containing maliciously crafted embedded fonts run a risk of arbitrary code execution. The update addresses this issue by improving index checking. This vulnerability was first demonstrated by Charlie Miller at the Pwn2Own conference 20 days ago, which shows a reasonably quick response on Apple's part. The update requires Mac OS X 10.6.3 and is available via Software Update and the Apple Support Downloads page. (Free, 6.5 MB)
Improve Apple Services with AirPort Base Stations
You can make iChat file transfers, iDisk, and Back to My Mac work better by turning on a setting with Apple AirPort base stations released starting in 2003. Launch AirPort Utility, select your base station, click Manual Setup, choose the Internet view, and click the NAT tab. Check the Enable NAT Port Mapping Protocol (NAT-PMP) box, and click Update. NAT-PMP lets your Mac OS X computer give Apple information to connect back into a network that's otherwise unreachable from the rest of the Internet. This speeds updates and makes connections work better for services run by Apple.
Security Update 2010-003 (Snow Leopard)
scanning solutions for companies of any size. Make your life more
productive, mobile, paperless, and efficient with a ScanSnap
scanner. To learn more, visit: <http://www.ez.com/sstb>