C-Note-05-009: Mozilla and Firefox Vulnerabilities (04/20/2005)
This C-Note is superceded by CIAC Bulletins P-190 and P-193.

Multiple vulnerabilities have been discovered in Mozilla and Firefox. Exploiting the vulnerabilities may result in cross-site scripting attacks, bypassing security restrictions, and possible system compromise.

It is recommended that you upgrade Mozilla and Firefox browsers:

Upgrade to Mozilla 1.7.7:: http://www.mozilla.org/products/mozilla1.x/
Upgrade to Firefox 1.0.3: http://www.mozilla.org/products/firefox/

CIAC would like to thank Secunia for this information.
http://secunia.com/advisories/14938
http://secunia.com/advisories/14992

Also see US-CERT Vulnerability Note VU#973309: http://www.kb.cert.org/vuls/id/973309