The host is installed with NetSaro Enterprise Messenger Server 2.0 or before and is prone to plaintext password storage vulnerability. A flaw is present in the application which fails to properly handle NetSaro.fdb file. Successful exploitation allows local users to discover cleartext server credentials.