The host is missing a security update according to the Apple advisory and is prone to an information disclosure vulnerability. A flaw is present in the application, which fails to handle issues in authentication protocol. On successful exploitation, an attacker may be able to capture cleartext passwords.