The host is installed with Google Chrome before 14.0.835.202 and is prone to a same origin policy bypass vulnerability. A flaw is present in the application, which fails to restrict access to the window prototype. Successful exploitation could allow attackers to bypass cross origin policy.