Heap-based buffer overflow in CoreGraphics in Apple Safari before 3.2 on Windows allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted image, related to improper handling of color spaces.

More... (http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-3623)