Vulnerability Details CVE-2002-0345
Symantec Ghost 7.0 stores usernames and passwords in plaintext in the NGServer\params registry key, which could allow an attacker to gain privileges.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.006
EPSS Ranking 68.9%
CVSS Severity
CVSS v2 Score 7.5
References
- http://marc.info/?l=bugtraq&m=101529792821615&w=2
- http://online.securityfocus.com/archive/1/258293
- http://www.iss.net/security_center/static/8305.php
- http://www.securityfocus.com/bid/4181
- http://marc.info/?l=bugtraq&m=101529792821615&w=2
- http://online.securityfocus.com/archive/1/258293
- http://www.iss.net/security_center/static/8305.php
- http://www.securityfocus.com/bid/4181
Products affected by CVE-2002-0345
-
cpe:2.3:a:symantec:norton_ghost:7.0