GPAC is a multimedia framework for rich media and is distributed under the LGPL license. abst_box_size function in GPAC version 1.0.1 is vulnerable to null pointer dereference. An attacker could exploit this vulnerability to cause a denial of service via a specially crafted file in the MP4Box command.