The host is installed with NetMechanica NetDecision before 4.6.1 and is prone to an information disclosure vulnerability. A flaw is present in the application, which fails to handle an invalid version number. Successful exploitation could allow attackers to obtain the source code of NetDecision script files with a .nd extension.