The host is installed with xArrow before 3.4.1 and is prone to heap-based buffer overflow vulnerability. A flaw is present in the application, which fails to do proper boundary checks. Successful exploitation allows remote attackers to execute arbitrary code via packets that trigger an invalid free operation.