The host is installed with xArrow before 3.4.1 and is prone to integer overflow vulnerability. A flaw is present in the application, which fails to perform proper bounds check. Successful exploitation allows remote attackers to execute arbitrary code via a crafted packet that triggers an out-of-bounds read operation.