Plaintext Password Storage Vulnerability in EMC NetWorker

Plaintext Password Storage Vulnerability in EMC NetWorker

CVE-2002-0114 · MEDIUM Severity

AV:L/AC:L/AU:N/C:P/I:P/A:P

EMC NetWorker (formerly Legato NetWorker) before 7.0 stores passwords in plaintext in the daemon.log file, which allows local users to gain privileges by reading the password from the file. NOTE: this was originally reported for Legato NetWorker 6.1 on the Solaris 7 platform.

Learn more about our Cis Benchmark Audit For Oracle Solaris.