The host is installed with Adobe Shockwave Player before 11.6.1.629 and is prone to a remote code execution vulnerability. A flaw is present in the msvcr90.dll, which fails to sanitize user supplied input. Successful exploitation could allow attackers to execute arbitrary code.