•    
  •  
Thoughtful, detailed coverage of the Mac, iPhone, and iPad, plus the TidBITS Content Network for Apple consultants.

Internet Explorer Cross-Frame Security Bug Patch

Internet Explorer Cross-Frame Security Bug Patch -- Microsoft has announced a potential security problem affecting Internet Explorer that could enable a Web site operator to access the contents of your local disks. Dubbed the "cross-frame navigate" issue, the problem affects both Windows and Macintosh versions of Internet Explorer 3.x and 4.x. On the Mac, Internet Explorer 3.01, 4.0, and 4.01 are vulnerable although 3.0 is not; under Windows, any application (such as Eudora Pro) that can use Explorer's HTML engine could also be vulnerable. Microsoft has released a 2.3 MB updater for the Mac version of Internet Explorer 4.01 that fixes the problem; users of Explorer 3.01 and 4.0 must upgrade to version 4.01 and then apply the patch. Although little information is available, Microsoft claims to have no reports of anyone exploiting this loophole. [GD]

<http://www.microsoft.com/ie/security/?/ie/ security/xframe.htm>
<http://www.microsoft.com/security/bulletins/ ms98-013.htm>
<http://www.microsoft.com/msdownload/iebuild/ xframe_mac/en/30926.htm>

 

PDFpen and PDFpenPro 9 add 100+ enhancements to improve your PDF
editing experience, with annotations, Tables of Contents, and more
export options. For PDF reviewing, editing, signing, redacting and
exporting, PDFpen has you covered. <http://smle.us/pdfpen9-tb>