The host is installed with Oracle VirtualBox 4.2.x through 4.2.20 or 4.3.x before 4.3.8 and is prone to an arbitrary code execution vulnerability. A flaw is present in the application, which fails to handle a crafted chromium network pointer. Successful exploitation could allow attackers to corrupt memory.