The host is installed with Winamp 5.6 or earlier version and is prone to denial of service vulnerability. A flaw is present in in_mp4 plugin, which fails to properly handle a metadata or albumart in an MP4 file. Successful exploitation allows remote attackers to crash the application using an invalid MP4 file.