The host is installed with Microsoft Visual Studio 2005 or Microsoft Report Viewer 2005 Service Pack 1 Redistributable Package and is prone to information disclosure vulnerability. A flaw is present in Microsoft Report Viewer, which can not handle specially crafted web pages. Successful exploitation could allow an attacker to gain sensitive information.