The host is installed with VideoLAN VLC media player before 2.0.8 and is prone to buffer overflow vulnerability. The flaw is present in the mp4a packetizer (modules/packetizer/mpeg4audio.c), which fails to perform adequate boundary checks on user-supplied input. Successful exploitation allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code.