Mozilla foundation released a security bulleting yesterday urging Firefox users to upgrade to the latest FF. You can find details of this bulleting here: MFSA 2007-09: Privilege escalation by setting img.src to javascript: URI