Mandriva Linux Security Advisory 2010-125 - An unspecified function in the JavaScript implementation in Mozilla Firefox creates and exposes a temporary footprint when there is a current login to a web site, which makes it easier for remote attackers to trick a user into acting upon a spoofed pop-up message, aka an in-session phishing attack. Other vulnerabilities that also exist have been addressed.
cbcebfaf26accdadc354ccaa37a3ad88f249eb83e5034ef8bbbfd9ec37da9e2c