CVE-2007-3274
Apple Safari 3.0 and 3.0.1 on Windows XP SP2 allows attackers to cause a denial of service (application crash) via JavaScript that sets the document.location variable, as demonstrated by an empty value of document.location.
Date published : 2007-06-19
http://www.securityfocus.com/archive/1/471542/100/0/threaded