The host is installed with Oracle Java SE 6 before update 17 and is prone to arbitrary code execution vulnerability. A flaw is present in the applications, which fails to properly handle a crafted web page. Successful exploitation allows remote attackers to execute arbitrary commands.