← Back

CVE-2007-2361

nvd nist
Published: Apr 30, 2007Modified: Apr 23, 2026

JSON object

Loading...
4.9
Vector
AV:L/AC:L/Au:N/C:C/I:N/A:N
Exploitability: 3.9 / Impact: 6.9
Source: NVD

Description

Symantec Norton Ghost, Norton Save & Recovery, LiveState Recovery, and BackupExec System Recovery before 20070426, when remote backups of restore points images are configured, uses weak permissions (world readable) for a configuration file with network share credentials, which allows local users to obtain the credentials by reading the file.

Affected (16)

Symantec
4 products
Backupexec System Recovery
Livestate Recovery
Norton Ghost
Norton Save And Recovery
Configuration A
16 vulnerable
Vulnerable SoftwareAffected Versions
Symantec
Backupexec System Recovery
Version 6.52
Backupexec System Recovery
Version 6.52a
Backupexec System Recovery
Version 6.53
Backupexec System Recovery
Version 6.5
Symantec
Livestate Recovery
Version 6.01
Livestate Recovery
Version 6.02
Livestate Recovery
Version 6.0
Symantec
Norton Ghost
Version 10.01
Norton Ghost
Version 10.0
Norton Ghost
Version 10.0
Norton Ghost
Version 10.0
Symantec
Norton Save And Recovery
Version 1.01
Norton Save And Recovery
Version 1.01b
Norton Save And Recovery
Version 11.01
Norton Save And Recovery
Version 11.01b
Norton Save And Recovery
Version 11.0

References (12)

Source: cve@mitre.org
Vendor Advisory
Source: cve@mitre.org
Source: cve@mitre.org
Source: cve@mitre.org
PatchVendor Advisory
Source: cve@mitre.org
Source: cve@mitre.org
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
PatchVendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.