Mozilla has announced a number of fixes for its Firefox browser, claiming that four of the flaws are critical. There are 2 “High” rating, 2 listed “Moderate” and 4 minor vulnerabilities.
Below is the flaws have been fixed in version 3.0.9
MFSA 2009-21 POST data sent to wrong site when saving web page with embedded frame
MFSA 2009-20 Malicious search plugins can inject code into arbitrary sites
MFSA 2009-19 Same-origin violations in XMLHttpRequest and XPCNativeWrapper.toString
MFSA 2009-18 XSS hazard using third-party stylesheets and XBL bindings
MFSA 2009-17 Same-origin violations when Adobe Flash loaded via view-source: scheme
MFSA 2009-16 jar: scheme ignores the content-disposition: header on the inner URI
MFSA 2009-15 URL spoofing with box drawing character
MFSA 2009-14 Crashes with evidence of memory corruption (rv:18.104.22.168)
Mozilla strongly advice to upgrade to the latest version 3.0.9 from here as soon as possible and I just upgraded mine.
Source : SC Magazine