The host is installed with kernel before 3.17.4 and is prone to a stack-based buffer overflow vulnerability. A flaw is present in the application, which fails to properly handle a large message length in an ioctl call. Successful exploitation allows local users to cause a denial of service (system crash) or possibly gain privileges.