The host is missing a critical security update according to Microsoft security bulletin, MS10-081. The update is required to fix heap-based buffer overflow vulnerability. A flaw is present in the common control library (Comctl32.dll) in Microsoft Windows, which fails to handle messages passed from a 3rd-party scalable vector graphics (SVG) viewer. Successful exploitation could allow an attacker to execute arbitrary code on the system with the privileges of the victim.