The host is installed with Apple Safari 4.x before 4.0.3 and is prone to a phishing attack vulnerability. A flaw is present in the application, which fails to properly handle unknown vectors. Successful exploitation could allow remote web servers to place an arbitrary web site in the Top Sites view.