The host is installed with Oracle Java SE 7 update 21 and earlier, before Java SE 6u61, before Java SE 5.0u52 and is prone to unspecified vulnerability. The flaw is present in the application, which fail to handle unknown vectors related to 2D. Successful exploitation allows remote attackers to affect confidentiality.