The host is missing a Critical security update according to Microsoft security bulletin, MS10-052. The update is required to fix remote code execution vulnerability. MPEG Layer-3 audio codecs which fails to handle a specially crafted media file or streaming contents. Successful exploitation allows an attacker to run arbitrary code and hence install programs, view, change, or delete data or create new accounts with full user rights.