The host is missing a critical security update according to Microsoft security bulletin, MS16-003. The update is required to fix an information disclosure vulnerability. A flaw is present in the applications, which fail to properly access objects in memory. An attacker who successfully exploited these vulnerabilities could gain the same user rights as the current user.