The host is missing a Critical security update according to Microsoft security bulletin, MS11-040. The update is required to fix denial of service vulnerability. A flaw is present in the application which fails to handle specially crafted request. Successful exploitation allows remote attackers to execute arbitrary code on the affected software.