CVE-2011-2368
The WebGL implementation in Mozilla Firefox 4.x through 4.0.1 does not properly restrict write operations, which allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via unspecified vectors.
Date published : 2011-06-30
http://www.mozilla.org/security/announce/2011/mfsa2011-26.html