The host is installed with Google Chrome before 17.0.963.46 and is prone to URL spoofing vulnerability. A flaw is present in the application, which does not properly implement the drag-and-drop feature. Successful exploitation allows remote attackers to spoof the URL bar via unspecified vectors.