The host is installed with Google Chrome before 25.0.1364.160 or Apple iTunes before 11.0.3 and is prone to a remote code execution vulnerability. A flaw is present in the application, which fails to handle vectors that leverage type confusion. Successful exploitation could allow attackers to execute arbitrary code.