The host is installed with Axiosys Bento4 1.6.0-639 and is prone to a heap based buffer overflow vulnerability. A flaw is present in the applications which fails to properly handle an issue in function AP4_DataBuffer::SetDataSize of the component Avcinfo. Successful exploitation allows remote attackers to cause unspecified impact.