The host is installed with Google Chrome before 37.0.2062.94 and is prone to arbitrary code execution vulnerability. A flaw is present in the application, which does not properly handle the interaction of extensions, IPC, the sync API. Successful exploitation allow attackers to execute arbitrary code.