Google could not be immediately reached for comment. (Google representatives have instituted a policy of not talking with CNET News.com reporters until July 2006 in response to privacy issues raised by a previous story.)
Firefox Multiple Vulnerabilities (Multiple vulnerabilities have been reported in Firefox, which can be exploited by malicious people to bypass certain security restrictions, conduct cross-site scripting attacks, and compromise a user’s system.)
Mozilla Firefox Download Dialog Spoofing Vulnerabilities (Secunia Research has discovered two vulnerabilities in Mozilla Firefox, which can be exploited by malicious people to spoof file types in the file download dialog.) Partial Fix.
Mozilla Firefox Two Vulnerabilities (Two vulnerabilities have been discovered in Firefox, which can be exploited by malicious people to conduct cross-site scripting attacks and compromise a user’s system.)
Mozilla Firefox Multiple Vulnerabilities (Multiple vulnerabilities have been reported in Firefox, which can be exploited by malicious people to conduct cross-site scripting attacks, bypass certain security restrictions, and compromise a user’s system.)
Mozilla Firefox Three Vulnerabilities (Three vulnerabilities have been reported in Firefox, which can be exploited by malicious people to bypass certain security restrictions and compromise a user’s system.)
Firefox “Save Link As…” Status Bar Spoofing Weakness (bitlance winter has discovered a weakness in Firefox, which can be exploited by malicious people to trick users into saving malicious files by obfuscating URLs.)
Mozilla / Firefox “Save Link As” Download Dialog Spoofing (Secunia Research has discovered a vulnerability in Mozilla and Mozilla Firefox, which can be exploited by malicious people to trick users into downloading malicious files.)
Mozilla / Firefox / Thunderbird Multiple Vulnerabilities (Details have been released about several vulnerabilities in Firefox, Mozilla and Thunderbird. These can be exploited by malicious, local users to perform certain actions on a vulnerable system with escalated privileges and by malicious people to conduct spoofing attacks, disclose and manipulate sensitive information, and potentially compromise a user’s system.)
Mozilla / Firefox Three Vulnerabilities (mikx has discovered three vulnerabilities in Mozilla and Firefox, which can be exploited by malicious people to plant malware on a user’s system, conduct cross-site scripting attacks, disclose sensitive information, bypass certain security restrictions and compromise a user’s system.)
Mozilla Products IDN Spoofing Security Issue (Eric Johanson has reported a security issue in Mozilla / Firefox / Camino / Thunderbird, which can be exploited by a malicious web site to spoof the URL displayed in the address bar, SSL certificate, and status bar.)
Mozilla / Mozilla Firefox Dialog Overlapping Weakness (mikx has discovered a weakness in Mozilla and Mozilla Firefox, which potentially can be exploited by malicious people to trick users into performing unintended actions.)
Mozilla / Mozilla Firefox Download Dialog Source Spoofing (Secunia Research has discovered a vulnerability in Mozilla / Mozilla Firefox, which can be exploited by malicious people to spoof the source displayed in the Download Dialog box.)
Internet Explorer/Outlook Express Status Bar Spoofing (bitlance winter has discovered a weakness in Internet Explorer/Outlook Express, which can be exploited by malicious people to trick users into visiting a malicious web site by obfuscating URLs.) Unpatched.
Microsoft Internet Explorer Multiple Vulnerabilities (Multiple vulnerabilities have been reported in Internet Explorer, which can be exploited by malicious people to conduct cross-site scripting and phishing attacks, disclose sensitive information, bypass certain security restrictions, and compromise a user’s system.)
Internet Explorer FTP Download Directory Traversal (A vulnerability has been discovered in Internet Explorer, which can be exploited by malicious people to compromise a user’s system.) Partial Patched.
不管是哪一套,能夠直接攻進系統的安全性漏洞都有修正,而其他類性的 (主要是 DoS 與 Spoofing) 安全性問題 IE6 不太想修的樣子。