The host is installed with Apple QuickTime before 7.6.9 and is prone to a denial of service vulnerability. A flaw is present in the application, which fails to properly handle a crafted movie file that causes an image sample transformation to scale a sprite outside a buffer boundary. Successful exploitation could allow attackers to execute arbitrary code or crash the service.