One vulnerability, which was uncovered by researcher Aviv Raff in just a few minutes using publicly available software, is a memory corruption error that could be exploited to allow the execution of malicious code. Security researchers David Maynor and Thor Larholm, too, found bugs. In a blog entry, Maynor explains, "I'd like to note that we found a totl [sic] of 6 bugs in an afternoon, 4 DoS and 2 remote code execution bugs. We have weaponized one of those to be reliable and its diffrent [sic] that what Thor has found."
The researchers don't say whether the bugs also affect the MacOS X version of Safari, but this certainly doesn't bode well for Apple's first effort in the Windows browser world—as much as Apple might boast that its engineers "designed Safari to be secure from day one."