The host is installed with Google Chrome before 34.0.1847.116 and is prone to a local cross-origin bypass vulnerability. A flaw is present in the application, which fails to properly handle renderer access. Successful exploitation could allow attackers to bypass the Same Origin Policy and forge local pathnames.