An authentication bypass vulnerability can allow a low privileged attacker to access the NTLM hash of service account on the VSPC server.