Symantec Ghost 7.0 stores usernames and passwords in plaintext in the NGServer\params registry key, which could allow an malicious user to gain privileges.
symantec norton ghost 7.0