The host is installed with Google Chrome before 4.0.249.89 and is prone to bypass vulnerability. A flaw is present in the application which does not properly hamdle mouse click event. Successful exploitation allow remote attackers to bypass intended restrictions on popup windows.