The host is missing a critical security update according to Microsoft Security bulletin, MS12-016. The update is required to fix a remote code execution vulnerability. A flaw is present in the application, which fails to sanitize user supplied input. Successful exploitation could allow attackers to access memory in an unsafe manner, execute arbitrary code or crash the service.