CVE-2009-2824
Multiple buffer overflows in Apple Type Services (ATS) in Apple Mac OS X 10.5.8 allow remote attackers to execute arbitrary code via a crafted embedded font in a document.
Date published : 2009-11-10
http://lists.apple.com/archives/security-announce/2009/Nov/msg00000.html