The host is installed with VideoLAN VLC media player through 3.0.17.4 and is prone to a buffer overflow vulnerability. A flaw is present in the application, which fails to properly handle an issue in the VNC module in VideoLAN. On successful exploitation, attackers can trick a user into opening a crafted playlist or connecting to a rogue VNC server, to crash VLC or execute code under some conditions.