The flaw occurs because the Java-Plugin Browser is running "javaws.exe" without validating command-line parameters.

Five of the 11 bulletins will be rated "critical," Microsoft's highest severity rating. The flaws affect all versions of Windows, including the company's newest Windows 7 operating system.

The Firefox 3.6.3 update is rated critical. It fixes a flaw that was exploited at this year's CanSecWest Pwn2Own hacker challenge.

Over the last week, Apple has shipped security patches to cover 88 vulnerabilities in Mac operating system, 16 holes in the QuickTime media player, 7 flaws in iTunes and a security bug in the AirPort Base Station.

Security response teams at Adobe and FoxIt are investigating ways to mitigate a new PDF hack that allows the execution of an embedded executable without exploiting any security vulnerabilities.

The attacks, first spotted on March 9, included Trojan downloaders and backdoor programs that gave malicious hackers full access to hijacked PCs.

The critical MS08-018 update patches security holes that could lead to code execution attacks on all versions of Microsoft's flagship browser, including the newest Internet Explorer 8.

A trivial security flaw within a popular photo sharing iPhone app known as Quip, has exposed thousands of shared photos, with repositories of them -- including the naked ones -- already circulating across the Web.

The PDF hack, when combined with clever social engineering techniques, could potentially allow code execution attacks if a user simply opens a rigged PDF file.

The out-of-band update comes exactly 21 days after Microsoft said it was aware of targeted attacks against Windows users running its flagship browser.