CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2002-0344

Symantec LiveUpdate 1.5 and earlier in Norton Antivirus stores usernames and passwords for a local LiveUpdate server in cleartext in the registry, which may allow remote attackers to impersonate the LiveUpdate server.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.012

EPSS Ranking 77.4%

CVSS Severity

CVSS v2 Score 5.0

References

http://marc.info/?l=bugtraq&m=101466781122312&w=2
http://marc.info/?l=bugtraq&m=101496301307285&w=2
http://www.iss.net/security_center/static/8282.php
http://www.securityfocus.com/bid/4170
http://marc.info/?l=bugtraq&m=101466781122312&w=2
http://marc.info/?l=bugtraq&m=101496301307285&w=2
http://www.iss.net/security_center/static/8282.php
http://www.securityfocus.com/bid/4170

Products affected by CVE-2002-0344

Symantec » Liveupdate » Version: N/A

cpe:2.3:a:symantec:liveupdate:-
Symantec » Liveupdate » Version: 1.0

cpe:2.3:a:symantec:liveupdate:1.0
Symantec » Liveupdate » Version: 1.4

cpe:2.3:a:symantec:liveupdate:1.4
Symantec » Liveupdate » Version: 1.5

cpe:2.3:a:symantec:liveupdate:1.5

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2002-0344

Products

Pricing

Contact Us