"A vulnerability in Firefox could make users of the open source
browser more likely to fall for phishing scams.
"The flaw in Mozilla Firefox 1.0, details of which were
published by Secunia on Tuesday, allows malicious hackers to spoof
the URL in the download dialog box which pops up when a Firefox
user tries to download an item from a Web site. This flaw is caused
by the dialog box incorrectly displaying long sub-domains and
paths, which can be exploited to conceal the actual source of the