The host is installed with Microsoft Exchange Server 2007 or 2010 and is prone to remote code execution vulnerability. A flaw is present in the application, which is caused when WebReady Document Viewer is used to preview a specially crafted file. Successful exploitation allows attackers to run arbitrary code as LocalService on the affected Exchange server.