The host is installed with Apple Safari before 4.0 and is prone to a same origin policy bypass vulnerability. A flaw is present in the application, which fails to prevent web sites from loading third-party content into a subframe. Successful exploitation could allow attackers to bypass the Same Origin Policy and conduct "clickjacking" attacks.