The host is installed with Microsoft OneNote 2010 and is prone to information disclosure vulnerability. A flaw is present in the application, which fails to properly validate a buffer size. Successful exploitation allows attackers to read arbitrary data in memory.