The host is installed with NetSaro Enterprise Messenger Server 2.0 or before and is prone to weak cryptographic password storage vulnerability. A flaw is present in the application which fails to clear the cleartext console credentials. Successful exploitation allows local users to obtain sensitive information.