Integer overflow in ImageIO in Apple Mac OS X 10.4 up to 10.4.5 allows remote attackers to cause a denial of service (crash) via a crafted JPEG image with malformed JPEG metadata, as demonstrated using Safari, aka "Deja-Doom".
http://lists.apple.com/archives/security-announce/2006/May/msg00003.html
http://secunia.com/advisories/20077
https://exchange.xforce.ibmcloud.com/vulnerabilities/26412