Mozilla Firefox up to and including 1.5.0.3 has a vulnerability in processing the content-length header
mozilla firefox