CVE-2011-3692 Information

Description

NetSaro Enterprise Messenger Server 2.0 stores cleartext console credentials in configuration.xml which allows local users to obtain sensitive information by reading this file and performing a base64 decoding step.

Reference

http://www.solutionary.com/index/SERT/Vuln-Disclosures/NetSaro-Enterprise-Messenger-Vulnerability.html