The host is installed with Adobe Flash Player 9.0.124.0 and earlier and is prone to cross-site scripting vulnerability. A flaw is present in the application, which fails handle the vectors related to loose interpretation of an ActionScript attribute. Successful exploitation could allow attackers to inject arbitrary web script or HTML.