Microsoft Windows Vista is prone to a local information-disclosure vulnerability. Local attackers can exploit this issue to obtain sensitive information that may allow them to gain unauthorized access to the affected computer.
Permit local access for trusted individuals only. Where possible, use restricted environments and restricted shells.
Allow only trusted users to have local, interactive access to computers running the vulnerable application.
Implement filesystem access control to deny access to all sensitive files and directories.
Allow only trusted users to have access to files containing sensitive information.
The vendor released updates to address this issue. Please see the references for more information.