Bento4 is a C library for reading and writing MP4 files. Bento4 version 1.6.0-638 contains a denial-of-service vulnerability that stems from a null pointer reference in the AP4_DescriptorListInspector::Action function in Ap4Descriptor.h:124, which could be exploited to perform a denial-of-service (DOS) attack. The vulnerability can be exploited to perform a denial-of-service (DOS) attack.