CVE-2007-2361
Published Apr 30, 2007
Last updated 7 years ago
Overview
- Description
- Symantec Norton Ghost, Norton Save & Recovery, LiveState Recovery, and BackupExec System Recovery before 20070426, when remote backups of restore points images are configured, uses weak permissions (world readable) for a configuration file with network share credentials, which allows local users to obtain the credentials by reading the file.
- Source
- cve@mitre.org
- NVD status
- Modified
Social media
- Hype score
- Not currently trending
Risk scores
CVSS 2.0
- Type
- Primary
- Base score
- 4.9
- Impact score
- 6.9
- Exploitability score
- 3.9
- Vector string
- AV:L/AC:L/Au:N/C:C/I:N/A:N
Weaknesses
- nvd@nist.gov
- NVD-CWE-Other
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:symantec:backupexec_system_recovery:6.5:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "D0598D0E-0BCA-4711-89DE-53C528D9015B"
},
{
"criteria": "cpe:2.3:a:symantec:backupexec_system_recovery:6.52:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "8BAB9A49-0311-4D33-8F58-F1228CABA8EC"
},
{
"criteria": "cpe:2.3:a:symantec:backupexec_system_recovery:6.52a:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "2942EF66-62D1-49F9-A38C-BFEEAD22F62E"
},
{
"criteria": "cpe:2.3:a:symantec:backupexec_system_recovery:6.53:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "CC7F5F20-B428-4754-9274-F16BC01E8957"
},
{
"criteria": "cpe:2.3:a:symantec:livestate_recovery:6.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "33F3C4CA-B6D1-4B7A-9C98-8CE0A71C86DF"
},
{
"criteria": "cpe:2.3:a:symantec:livestate_recovery:6.01:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "5E137FF2-AEC3-48CD-B744-76615B433554"
},
{
"criteria": "cpe:2.3:a:symantec:livestate_recovery:6.02:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "880D2EE8-DB5C-478A-86F6-1960C1F68E52"
},
{
"criteria": "cpe:2.3:a:symantec:norton_ghost:10.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "CA920B14-D3B2-4528-8A6F-C8545FA466AF"
},
{
"criteria": "cpe:2.3:a:symantec:norton_ghost:10.0:*:dell:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "48289358-FC5D-4CC9-B420-365B1FB842F5"
},
{
"criteria": "cpe:2.3:a:symantec:norton_ghost:10.0:*:norton_system_works:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "6A43FA5B-E637-41B3-BCD9-A3DF2A372DE9"
},
{
"criteria": "cpe:2.3:a:symantec:norton_ghost:10.01:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "3F6128F8-5BE1-4A5A-BCEF-D0C9F94E306E"
},
{
"criteria": "cpe:2.3:a:symantec:norton_save_and_recovery:1.01:*:sony_euro:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "A059387D-6A4E-4F23-B16F-9C04601A556D"
},
{
"criteria": "cpe:2.3:a:symantec:norton_save_and_recovery:1.01b:*:norton_system_works_2007:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "D4EE821D-CCA3-43C7-8044-31F9373AA8FB"
},
{
"criteria": "cpe:2.3:a:symantec:norton_save_and_recovery:11.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "8881CCEE-CDC3-4634-AD25-C705FD8BDE9D"
},
{
"criteria": "cpe:2.3:a:symantec:norton_save_and_recovery:11.01:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "DD4775B1-3712-429D-9227-824CFAB69FE0"
},
{
"criteria": "cpe:2.3:a:symantec:norton_save_and_recovery:11.01b:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "082E74B5-1045-4BCF-93A2-AF0AFF4EAA00"
}
],
"operator": "OR"
}
]
}
]