Firefox / Konqueror / Safari certificate spoofing
Link between certificate and web site is not set, if certificate from unknown certification authirity is manually approved, making it's possible to use same certificate for different site withour warning...