The host is installed with Internet Explorer 8 and is prone to information disclosure vulnerability. A flaw is present in the application which does not properly handle XML document containing a call to the XSLT generate-id XPath function. Successful exploitation allows remote attackers to obtain potentially sensitive information about heap memory addresses.