CVE-2011-0198
Heap-based buffer overflow in Apple Type Services (ATS) in Apple Mac OS X before 10.6.8 allows remote attackers to execute arbitrary code via a crafted embedded TrueType font.
Date published : 2011-06-24
http://lists.apple.com/archives/security-announce/2011//Jun/msg00000.html