steal firefox history redux
The following exploit works on Firefox 2.0.0.1. Other versions might be vulnerable too.