search menu icon-carat-right cmu-wordmark

CERT Coordination Center

Apple Mac OS X ATS data-font memory corruption vulnerability

Vulnerability Note VU#403593

Original Release Date: 2012-02-02 | Last Revised: 2012-03-28


Apple Mac OS X ATS contains a memory corruption vulnerability that may allow a remote, unauthenticated attacker to execute arbitrary code on a vulnerable system.


Apple Mac OS X ATS (Apple Type Services) fails to properly handle malformed data-font (.dfont) files, resulting in memory corruption.


By convincing a user to open a specially-crafted font in Font Book, a remote, unauthenticated attacker may be able to execute arbitrary code on a vulnerable system.


Apply an update

This issue is addressed in OS X Lion v10.7.3 and Security Update 2012-001.

Vendor Information


Apple Inc. Affected

Notified:  October 20, 2011 Updated: February 02, 2012



Vendor Statement

We have not received a statement from the vendor.

Vendor Information

We are not aware of further vendor information regarding this vulnerability.

Vendor References

CVSS Metrics

Group Score Vector
Base 9 AV:N/AC:M/Au:N/C:C/I:C/A:P
Temporal 7 E:POC/RL:OF/RC:C
Environmental 7 CDP:ND/TD:ND/CR:ND/IR:ND/AR:ND



This vulnerability was reported by Will Dormann of the CERT/CC.

This document was written by Will Dormann.

Other Information

CVE IDs: CVE-2011-3446
Severity Metric: 2.57
Date Public: 2012-02-02
Date First Published: 2012-02-02
Date Last Updated: 2012-03-28 14:53 UTC
Document Revision: 20

Sponsored by CISA.