This article does a good job of covering this vulnerability: Emergency Bulletin: Firefox 0 day in the wild. What to do.