The host is missing a critical security update according to Microsoft bulletin, MS15-108. The update is required to fix multiple vulnerabilities. The flaws are present in the applications, which fail to handle objects in memory. An attacker who successfully exploited the vulnerabilities could gain the same user rights as the current user.