It's an IE bug
According to Aviv Raff, the security researcher who reported this to Microsoft, the Safari vulnerability is combined with an old Internet Explorer vulnerability: http://aviv.raffon.net/2008/05/31/SafariPwnsInternetExplorer.aspx
1 publicly visible post • joined 1 Jun 2008