Back in February Microsoft added a .NET Framework 3.5 SP1 plug-in not only to Internet Explorer but to Firefox. The add-in can be installed to Firefox without your approval, leaving Firefox vulnerable to IE exploits.