This script is Copyright (C) 2011-2015 Tenable Network Security, Inc.
The remote Windows host has an instant messaging product installed
that is affected by an information disclosure vulnerability.
The installed version of Novell Messenger Server, formerly known as
GroupWise Messenger, is earlier than 2.2.1. It thus is potentially
affected by an information disclosure vulnerability whereby a remote,
unauthenticated attacker could send commands that would force the
Messenger server process to return the contents of arbitrary memory
locations. This data could potentially include strings containing the
credentials used by Messenger to authenticate to directory services.
See also :
Upgrade to Novell Messenger 2.2.1 or later.
Risk factor :
Medium / CVSS Base Score : 5.0
CVSS Temporal Score : 4.8
Public Exploit Available : true