And the first released Firefox 1.5 vulnerability...

http://isc.sans.org/diary.php?storyid=920

Quote:

---

Packetstorm Security has released proof of concept code that causes a buffer overflow and denial of service on the Firefox browser. Long and short of it is, history.dat stores various pieces of information on websites you've visited. If the topic of a page is crafted to be long enough, it will crash the browser each time it is started after going to such a page.

---

Arbitrary code execution is also believed to be possible.

Mozilla's response...

http://www.mozilla.org/security/history-title.html