WebKit in Apple Safari before 5.0 or Apple iTunes before 9.2 on Windows, accesses out-of-bounds memory during processing of HTML tables, which allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted HTML document.