The host is installed with Microsoft Windows 7 or Windows Server 2008 R2 and is prone to elevation of privilege vulnerability. The flaw is present in the Windows Service Control Manager, which fails to properly handle crafted objects. Successful exploitation allows attackers to run arbitrary code or application in the context of the local system.