{QUOTE-> The security update for the open source browser originally was slated to be released Feb. 21 but was pushed back to accommodate a fix for the location.hostname vulnerability. Michal Zalewski, a Polish security researcher, was the first to disclose the vulnerability last week on his mailing list, Full Disclosure. He wrote that the flaw is in the most recent version of the Firefox browser -- 2.0.0.1 -- but added that it affects other recent versions, as well. <-QUOTE}Story (http://www.informationweek.com/software/showArticle.jhtml?articleID=197008505)