Recent Vulnerabilities Research Posts Trends Blog About Contact

Published: 30/04/2007 Updated: 29/07/2017

CVSS v2 Base Score: 4.9 | Impact Score: 6.9 | Exploitability Score: 3.9

VMScore: 436

Vector: AV:L/AC:L/Au:N/C:C/I:N/A:N

Symantec Norton Ghost, Norton Save & Recovery, LiveState Recovery, and BackupExec System Recovery prior to 20070426, when remote backups of restore points images are configured, uses weak permissions (world readable) for a configuration file with network share credentials, which allows local users to obtain the credentials by reading the file.

Vulnerable Product	Search on Vulmon	Subscribe to Product
symantec backupexec system recovery 6.5
symantec norton ghost 10.0
symantec backupexec system recovery 6.53
symantec livestate recovery 6.0
symantec norton save and recovery 1.01
symantec norton save and recovery 1.01b
symantec norton save and recovery 11.0
symantec backupexec system recovery 6.52
symantec backupexec system recovery 6.52a
symantec norton ghost 10.01
symantec livestate recovery 6.01
symantec livestate recovery 6.02
symantec norton save and recovery 11.01
symantec norton save and recovery 11.01b

NVD-CWE-Other http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=520 http://www.symantec.com/avcenter/security/Content/2007.04.26.html http://www.securitytracker.com/id?1017971 http://secunia.com/advisories/25013 http://www.vupen.com/english/advisories/2007/1552 https://exchange.xforce.ibmcloud.com/vulnerabilities/33929 https://nvd.nist.gov

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2007-2361

Vulnerability Summary

References

Vulmon Search

About

Products

Connect