The host is installed with Apple Safari before 4.0 and is prone to a multiple integer overflow vulnerability. The flaws are present in the application, which fails to properly handle vectors related to large values in certain inputs in (1) smooth/ftsmooth.c, (2) sfnt/ttcmap.c, and (3) cff/cffload.c. Successful exploitation could allow attackers to execute arbitrary code.