The host is installed with Adobe Flash Player before 11.2.202.378 and is prone to cross-site scripting (XSS) vulnerability. A flaw is present in the application, which fails to properly handle unknown vectors. Successful exploitation allows attackers to inject arbitrary web script or HTML.