CVE-2009-2842
Apple Safari before 4.0.4 does not properly implement certain (1) Open Image and (2) Open Link menu options, which allows remote attackers to read local HTML files via a crafted web site.
Date published : 2009-11-13
http://lists.apple.com/archives/security-announce/2009/Nov/msg00001.html