I've just finished reading an interesting article @ VIRUSLIST about 9 new serious security bugs discovered in IE6 since December 13th...
The latest bug discovered by a hacker named "The Pull" lets web sites access all programs on your hard drive. It accomplishes this using active X and Java script....( as usual...IMHO it's a safer alternative to have java disabled no matter what browser you use).
I can't find an appropriate patch for this bug and I assume it just comes with Micro$ofts latest "critical update"....
On a side not, MIcro$oft has questioned "The Pull's" motives for publicly announcing the latest flaw. It seems that Micro$oft doesn't want to know about any security related flaws!
