Apple today shipped Safari 4.0.4 to fix a total of seven security flaws that expose Windows and Mac users to a wide range of malicious hacker attacks. The high-priority update patches vulnerabilities that allow remote code execution (drive-by downloads) if a user simply surfs to a maliciously rigged Web site. Some of the issues affect Microsoft s new Windows 7 operating system. An integer overflow exists in the handling of images with an embedded color profile, which may lead to a heap buffer overflow.
Source: https://threatpost.com/apple-patches-critical-safari-vulnerabilities-111109/73081/