The host is missing an critical security update according to Microsoft security bulletin, MS16-065. The update is required to fix a TLS/SSL information disclosure vulnerability. A flaw is present in the TLS/SSL protocol, which fails to properly handle an injection of unencrypted data into the secure channel and then man-in-the-middle (MiTM) attack between the targeted client and a legitimate server. Successful exploitation allows attackers to decrypt encrypted SSL/TLS traffic.