The host is missing an important security update according to Microsoft bulletin, MS16-110. The update is required to fix multiple vulnerabilities. The flaws are present in the application, which fails to properly handle crafted vectors. An attacker who successfully exploited this vulnerability could attempt to brute force a users NTLM password hash, execute arbitrary code with elevated permissions on a target system or crash the system.