CVE-2007-5862
Java in Mac OS X 10.4 through 10.4.11 allows remote attackers to bypass Keychain access controls and add or delete arbitrary Keychain items via a crafted Java applet.
Date published : 2007-12-18
http://lists.apple.com/archives/Security-announce/2007/Dec/msg00001.html