CVE-2002-0344

CVSS 5.0 - MEDIUM

Description

Symantec LiveUpdate 1.5 and earlier in Norton Antivirus stores usernames and passwords for a local LiveUpdate server in cleartext in the registry, which may allow remote attackers to impersonate the LiveUpdate server.

Affected Products

Vendor	Product	Version
symantec	liveupdate	`All versions`

References

http://marc.info/?l=bugtraq&m=101466781122312&w=2

http://marc.info/?l=bugtraq&m=101496301307285&w=2

http://www.iss.net/security_center/static/8282.php

http://www.securityfocus.com/bid/4170

http://marc.info/?l=bugtraq&m=101466781122312&w=2

http://marc.info/?l=bugtraq&m=101496301307285&w=2

http://www.iss.net/security_center/static/8282.php

http://www.securityfocus.com/bid/4170

Weakness Types

NVD-CWE-Other

CVE Information

CVE ID:: CVE-2002-0344
Published:: 2002-06-25
Modified:: 2025-04-03
CVSS Score:: 5.0
Severity:: MEDIUM
Vector:: AV:N/AC:L/Au:N/C:N/I:P/A:N

Affected Vendors

symantec

Quick Actions

View on NVD Find Similar CVEs

CVSS Severity Scale

0.0 - 3.9 LOW

4.0 - 6.9 MEDIUM

7.0 - 8.9 HIGH

9.0 - 10.0 CRITICAL