The host is installed with Microsoft Windows and is prone to buffer overflow vulnerability. A flaw is present in BowserWriteErrorLogEntry function in Common Internet File System (CIFS) browser service in Mrxsmb.sys or bowser.sys, which fail to properly handle malicious browser election request packets containing an overly long server name string. Successful exploitation allow man-in-the-middle attackers to insert commands in encrypted SMTP sessions.