Backdoor on port TCP/25702, it's possible to obtain ICA and RDP usernames/passwords.
vulners.com/securityvulns/securityvulns:doc:6540