Microsoft has acknowledged that they slipped the .NET Framework Assistant plugin into Firefox via Windows Update this past February, and that it has poked a "critical" hole in the browser's security (effectively bringing Firefox down to IE's level).

http://gizmodo.com/5383413/shady-microsoft-plugin-pokes-critical-hole-in-firefox-security