Symantec Norton Ghost, Norton Save & Recovery, LiveState Recovery, and BackupExec System Recovery before 20070426, when remote backups of restore points images are configured, uses weak permissions (world readable) for a configuration file with network share credentials, which allows local users to obtain the credentials by reading the file.
References
Configurations
Configuration 1 (hide)
|
History
No history.
Information
Published : 2007-04-30 22:19
Updated : 2024-02-28 11:01
NVD link : CVE-2007-2361
Mitre link : CVE-2007-2361
CVE.ORG link : CVE-2007-2361
JSON object : View
Products Affected
symantec
- norton_ghost
- backupexec_system_recovery
- livestate_recovery
- norton_save_and_recovery
CWE