The attack surface of audio and multimedia software is quite broad. Generally, desktop users tend to have a fairly small number of programs that are used on an almost constant basis—web browsers, Instant Messengers, e-mail readers and media players. Of those, media players have been underexplored as an attack vector. There have been simple overflow exploits of long playlists, filenames or HTTP responses, but very little has been done that is specific to media streams themselves.