US-CERT is aware of public reports of a vulnerability in Mozilla Firefox 2.0.0.12.  This vulnerability may allow an attacker to read files from the Firefox installation directory, which may include some add-ons.

US-CERT encourages users to install the NoScript add-on to help mitigate the risks and will provide more information as it becomes available.