GPAC is a multimedia framework for rich media and is distributed under the LGPL license. a memory leak vulnerability exists in the infe_box_read function in MP4Box in GPAC version 1.0.1. An attacker could exploit the vulnerability to read memory via specially crafted files.