The host is installed with Google Chrome before 31.0.1650.63 and is prone to address bar spoofing vulnerability. The flaw is present in the application, which fails to handle the FrameLoader::notifyIfInitialDocumentAccessed function. Successful exploitation allows the remote attacker to spoof the address bar via vectors involving the document.write method.