CVE-2007-2360

Severity

68%

Complexity

31%

Confidentiality

165%

"In order for this exploit to have an impact, administrators would either have to configure client machines to save restore points images to a private share, or the vulnerable machine would have to be shared by several users who each saved their restore points images to private shares."

"In order for this exploit to have an impact, administrators would either have to configure client machines to save restore points images to a private share, or the vulnerable machine would have to be shared by several users who each saved their restore points images to private shares."

CVSS 2.0 Base Score 6.8. CVSS Attack Vector: local. CVSS Attack Complexity: low. CVSS Vector: (AV:L/AC:L/Au:S/C:C/I:C/A:C).

Overview

First reported 17 years ago

2007-04-30 22:19:00

Last updated 13 years ago

2011-03-08 02:54:00

Affected Software

Symantec LiveState Recovery 6.0

6.0

Symantec LiveState Recovery 6.01

6.01

Symantec LiveState Recovery 6.02

6.02

References

20070426 Symantec Norton Ghost 10 Recovery Points Insecure Password Storage Vulnerability

25013

1017971

http://www.symantec.com/avcenter/security/Content/2007.04.26.html

ADV-2007-1552

Stay updated

ExploitPedia is constantly evolving. Sign up to receive a notification when we release additional functionality.

Get in touch

If you'd like to report a bug or have any suggestions for improvements then please do get in touch with us using this form. We will get back to you as soon as we can.