CVE-2006-1457
Safari on Apple Mac OS X 10.4.6, when "Open `safe’ files after downloading" is enabled, will automatically expand archives, which could allow remote attackers to overwrite arbitrary files via an archive that contains a symlink.
Date published : 2006-05-12
http://lists.apple.com/archives/security-announce/2006/May/msg00003.html