I was looking around for information on this and couldn't really find anything that solid. I used the TTX tool in the fonttools library to decompile the font into XML format but couldn't garner anything from the file.
Is it possible that TrueType Font could contain executable code that could be potentially malicious?