Month Of Abysssec Undisclosed Bugs – The Parameter plugin in Firefox 3.6.4 suffers from a remote code execution vulnerability.
You can download this advisory from the following link: https://packetstormsecurity.com/files/download/93997/moaub17-fpp.pdf
Source: https://packetstormsecurity.com/files/93997/Month-Of-Abysssec-Undisclosed-Bugs-Firefox-Plugin-Parameter.html