The host is installed with Adobe Flash Player 9.x less than 9.0.124.0 or 8.x through 8.0.39.0 and is prone to multiple cross site scripting vulnerabilities. The flaws are present in the application, which fails to handle crafted SWF file. Successful exploitation could allow remote attackers to inject arbitrary web script or HTML.