CVE-2006-4400
Stack-based buffer overflow in the Apple Type Services (ATS) server in Mac OS 10.4.8 and earlier allow user-assisted attackers to execute arbitrary code via crafted font files.
Date published : 2006-11-30
http://lists.apple.com/archives/security-announce/2006/Nov/msg00001.html