The host is missing a security update according to MFSA 2012-98. The update is required to fix untrusted search path vulnerability. A flaw is present in the application, which fails to handle a Trojan horse DLL in the default downloads directory. Successful exploitation allows local users to gain privileges.