Firefox 3.5 was in open to attackers to try and run the arbitrary code on users computer. The vulnerability was due to a problem with the execution of JavaScript handling of code. The team has taken quite a jump with that and has introduced a fix for the bug with the release of Firefox 3.5.1. You don’t need to manually update to the latest fix as Firefox has auto updates enabled.
