regarding WinAmp users and JRE Java 1.5 (used in mozilla/firefox)
contrary to the claims of nullsoft, version 5.06 still appears vulnerable ...
- for the java runtime env though an updated, safe version is available ... ~*~