The following exploit works on Firefox 2.0.0.1. Other versions might be vulnerable too.

URL status