Symantec » Norton Save And Recovery : Security Vulnerabilities, CVEs,
Symantec Norton Ghost, Norton Save & Recovery, LiveState Recovery, and BackupExec System Recovery before 20070426, when remote backups of restore points images are configured, uses weak permissions (world readable) for a configuration file with network share credentials, which allows local users to obtain the credentials by reading the file.
Max CVSS
4.9
EPSS Score
0.04%
Published
2007-04-30
Updated
2017-07-29
Symantec Norton Ghost, Norton Save & Recovery, LiveState Recovery, and BackupExec System Recovery before 20070426, when remote backups of restore point images are configured, encrypt network share credentials with a key formed by a hash of the username, which allows local users to obtain the credentials by calculating the key.
Max CVSS
6.8
EPSS Score
0.04%
Published
2007-04-30
Updated
2011-03-08
Buffer overflow in Ghost Service Manager, as used in Symantec Norton Ghost, Norton Save & Recovery, LiveState Recovery, and BackupExec System Recovery before 20070426, allows local users to gain privileges via a long string.
Max CVSS
7.2
EPSS Score
0.04%
Published
2007-04-30
Updated
2017-07-29
3 vulnerabilities found