CVE-2013-0794
Mozilla Firefox before 20.0 and SeaMonkey before 2.17 do not prevent origin spoofing of tab-modal dialogs, which allows remote attackers to conduct phishing attacks via a crafted web site.
Date published : 2013-04-03
http://www.mozilla.org/security/announce/2013/mfsa2013-37.html