Its just week when Firefox 2.0 has been verdicted as better than IE7 combating phishing, it had just lost to IE7 in another password security flaw.
The vulnerability seems to be in the Firefox password manager which can be tricked into sending password information to an attacker’s Web site. So if you have enabled your Firefox 2.0 password manager to remember passwords, you are in high risk of losing your passwords. Add to this fact someone got a demo of this flaw.
Solutions ? Till mozilla get a fix, disable the Password Manager.
Its hardtime for Fox-fans.