The host is installed with Google Chrome before 20.0.1132.43 or Apple Tunes before 10.7 and is prone to use-after-free vulnerability. A flaw is present in the application, which fails to handle SVG references. Successful exploitation allows remote attackers to cause a denial of service or possibly have unspecified other impact.