The host is installed with Apple iCloud before 7.0 or iTunes before 12.7 and is prone to a null pointer dereference vulnerability. A flaw is present in the application, which fails to properly handle issues in validation. On successful exploitation, processing maliciously crafted XML may lead to an unexpected application termination or arbitrary code execution.