Symantec Norton Ghost, Norton Save & Recovery, LiveState Recovery, and BackupExec System Recovery prior to 20070426, when remote backups of restore points images are configured, uses weak permissions (world readable) for a configuration file with network share credentials, which allows local users to obtain the credentials by reading the file.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
symantec backupexec system recovery 6.5 |
||
symantec norton ghost 10.0 |
||
symantec backupexec system recovery 6.53 |
||
symantec livestate recovery 6.0 |
||
symantec norton save and recovery 1.01 |
||
symantec norton save and recovery 1.01b |
||
symantec norton save and recovery 11.0 |
||
symantec backupexec system recovery 6.52 |
||
symantec backupexec system recovery 6.52a |
||
symantec norton ghost 10.01 |
||
symantec livestate recovery 6.01 |
||
symantec livestate recovery 6.02 |
||
symantec norton save and recovery 11.01 |
||
symantec norton save and recovery 11.01b |