CVE-2007-1536
Integer underflow in the file_printf function in the "file" program before 4.20 allows user-assisted attackers to execute arbitrary code via a file that triggers a heap-based buffer overflow.
Date published : 2007-03-20
http://lists.apple.com/archives/security-announce/2007/May/msg00004.html