The host is installed with Oracle Java SE before 7 Update 11 and is prone to a security manager bypass vulnerability. A flaw is present in the application, which fails to handle unknown vectors. Successful exploitation could allow attackers to execute arbitrary code.