The host is installed with Apple iTunes before 10.5 and is prone to a buffer overflow vulnerability. A flaw is present in the application, which fails to handle a crafted Advanced Audio Coding (AAC) stream. Successful exploitation could allow attackers to overflow the buffer.