The host is missing a critical security update according to Microsoft security bulletin, MS15-033. The update is required to fix multiple vulnerabilities. Ths flaws are present in the application, which fails to properly properly sanitize crafted data. Successful exploitation could allow attackers to could read content that the attacker is not authorized to read or use the victim's identity to take actions on the targeted site or application.