Four new bugs were discovered in both Firefox and Internet Explorer. According to a polish security researcher two bugs are in Microsoft’s IE and the other two in Mozilla’s Firefox.

Mozzila’s specialists rated the bugs as low threat.
On this matter Microsoft is not aware of any attacks attempting to use the possible vulnerabilities but will take the appropriate action to protect its customers, which may include issuing a security advisory or providing a security update.

The bugs, which affect fully patched versions of Internet Explorer versions 6 and 7, enable hackers to steal sign-on cookies, corrupt memory, and hijack pages.
The other reported bug in Internet Explorer allows a hacker to mimic an arbitrary Web site, who gave it a medium rating.


For Firefox one DOM-related bug allows the attacker to spoof content and potentially even Javascript.
The second Firefox vulnerability requires an additional flaw in a content handler to actually compromise a user. The Firefox bug alone cannot be used to execute or even place code on the user's machine.