CVE-2008-2001
Apple Safari 3.1.1 allows remote attackers to cause a denial of service (application crash) via a file:///%E2 link that triggers an out-of-bounds access, possibly due to a NULL pointer dereference.
Date published : 2008-04-28
http://www.securityfocus.com/archive/1/491192/100/0/threaded