The host is installed with VLC Media Player 0.8.5 through 1.1.9 and is prone to integer overflow vulnerability. A flaw is present in the application which fails to parse the XSPF playlist. Successful exploitation could allow remote attacker to execute arbitrary code in the context of the application.