Vulnerability in Symantec Liveupdate
CVE-2002-0344
Symantec LiveUpdate 1.5 and earlier in Norton Antivirus stores usernames and passwords for a local LiveUpdate server in cleartext in the registry, which may allow remote attackers to impersonate the LiveUpdate server.
EPSS: 0.028 (84.3th percentile) — read the EPSS interpretation.
Affected products
- Symantec Liveupdate
- N/a — versions n/a
References
- cve@mitre.org (Exploit, Patch, vdb-entry, x_refsource_BID, Vendor Advisory)
- cve@mitre.org (Patch, vdb-entry, Vendor Advisory, x_refsource_XF)
- cve@mitre.org (mailing-list, x_refsource_BUGTRAQ)
- cve@mitre.org (mailing-list, x_refsource_BUGTRAQ)