Recent Vulnerabilities Research Posts Trends Blog About Contact

Published: 30/04/2007 Updated: 08/03/2011

CVSS v2 Base Score: 6.8 | Impact Score: 10 | Exploitability Score: 3.1

VMScore: 605

Vector: AV:L/AC:L/Au:S/C:C/I:C/A:C

Symantec Norton Ghost, Norton Save & Recovery, LiveState Recovery, and BackupExec System Recovery prior to 20070426, when remote backups of restore point images are configured, encrypt network share credentials with a key formed by a hash of the username, which allows local users to obtain the credentials by calculating the key.

Vulnerable Product	Search on Vulmon	Subscribe to Product
symantec backupexec system recovery 6.5
symantec backupexec system recovery 6.52
symantec norton ghost 10.01
symantec norton ghost 10.0
symantec backupexec system recovery 6.52a
symantec backupexec system recovery 6.53
symantec norton save and recovery 1.01b
symantec norton save and recovery 11.0
symantec norton save and recovery 1.01
symantec livestate recovery 6.0
symantec livestate recovery 6.01
symantec livestate recovery 6.02
symantec norton save and recovery 11.01
symantec norton save and recovery 11.01b

NVD-CWE-Other http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=520 http://www.symantec.com/avcenter/security/Content/2007.04.26.html http://www.securitytracker.com/id?1017971 http://secunia.com/advisories/25013 http://www.vupen.com/english/advisories/2007/1552 https://nvd.nist.gov

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2007-2360

Vulnerability Summary

References

Vulmon Search

About

Products

Connect