The host is installed with VideoLAN VLC media player 0.5.0 before 1.0.6 and is prone to a heap-based buffer overflow vulnerability. A flaw is present in the application, which fails to handle a crafted byte stream in an RTMP session. Successful exploitation could allow attackers to crash the service or execute arbitrary code.