The host is installed with Google Chrome before 2.0.172.43 and is prone arbitrary HTTPS servers spoofing vulnerability. A flaw is present in the application, which fails to handle a crafted certificate. Successful exploitation allows man-in-the-middle attackers to spoof arbitrary HTTPS servers.