The host is installed with Apple Safari before 4.0.4 is prone to buffer overflow vulnerability. The flaw is present in the application which fails to properly handle a crafted ColorSync profile embedded in an image. Successful exploitation allows attacker to cause a denial of service.