Looks like Mozilla is somewhat vulnerable to the same URL spoofing attack as IE is. Wonder who will have a patch our first?