Two of the bulletins are rated "critical" for all versions of Microsoft's flagship operating system, including Windows 7 and Windows Server 2003 R2.

The hackers hit the server hosting the software that Apache.org uses to it to track issues and requests and stole passwords from all users.

The attacks occurred mostly on WordPress blogs hosted by Network Solutions but it appears that there are multiple security weaknesses in play.

The flaw occurs because the Java-Plugin Browser is running "javaws.exe" without validating command-line parameters.

The patches will be released alongside a new automatic updater software that the company hopes will speed up the downloading and deployment of its security fixes.

Five of the 11 bulletins will be rated "critical," Microsoft's highest severity rating. The flaws affect all versions of Windows, including the company's newest Windows 7 operating system.

In a startling revelation, the open-source Mozilla project says that its flagship Firefox browser contains a root certificate authority that doesn't seem to have a known owner.

The update, available for Windows, Solaris and Linux, addresses issues that could be remotely exploitable without authentication.

Over the last week, Apple has shipped security patches to cover 88 vulnerabilities in Mac operating system, 16 holes in the QuickTime media player, 7 flaws in iTunes and a security bug in the AirPort Base Station.

Security response teams at Adobe and FoxIt are investigating ways to mitigate a new PDF hack that allows the execution of an embedded executable without exploiting any security vulnerabilities.