Safari for Windows, 0day URL protocol handler command injection

http://larholm.com/2007/06/12/safari-for-windows-0day-exploit-in-2-hours/