Mandriva Linux Security Advisory 2010-125 – An unspecified function in the JavaScript implementation in Mozilla Firefox creates and exposes a temporary footprint when there is a current login to a web site, which makes it easier for remote attackers to trick a user into acting upon a spoofed pop-up message, aka an in-session phishing attack. Other vulnerabilities that also exist have been addressed.
You can download this advisory from the following link: https://packetstormsecurity.com/files/download/90998/MDVSA-2010-125.txt
Source: https://packetstormsecurity.com/files/90998/Mandriva-Linux-Security-Advisory-2010-125.html