Skip to content
Thoughtful, detailed coverage of everything Apple for 34 years
and the TidBITS Content Network for Apple professionals
Log In
TidBITS Staff

Patch for Internet Explorer Cross-Frame Security Bug


Microsoft Corporation has announced a potential security problem affecting Internet Explorer that could enable a Web site operator to access the contents of your local disks. Dubbed the "cross-frame navigate" issue, the problem affects both Windows and Macintosh versions of Internet Explorer 3.x and 4.x. On the Macintosh, Internet Explorer 3.01, 4.0, and 4.01 are vulnerable although Explorer 3.0 is not; under Windows, any application (such as Eudora Pro) that can use Explorer’s HTML engine could also be vulnerable. Microsoft has released a 2.3 MB updater for the Mac version of Internet Explorer 4.01 that fixes the problem; users of Explorer 3.01 and 4.0 must upgrade to version 4.01 and then apply the patch. Although little additional information is available, Microsoft claims there are no reports of would-be hackers exploiting this loophole.


Subscribe today so you don’t miss any TidBITS articles!

Every week you’ll get tech tips, in-depth reviews, and insightful news analysis for discerning Apple users. For over 33 years, we’ve published professional, member-supported tech journalism that makes you smarter.

Registration confirmation will be emailed to you.

This site is protected by reCAPTCHA. The Google Privacy Policy and Terms of Service apply.