• News
• Infocus
• Foundations
• Microsoft
• Unix
• IDS
• Incidents
• Virus
• Pen-Test
• Firewalls
• Columnists
• Mailing Lists
• Newsletters
• Bugtraq
• Focus on IDS
• Focus on Linux
• Focus on Microsoft
• Forensics
• Pen-test
• Security Basics
• Vuln Dev
• Vulnerabilities
• Jobs
• Job Opportunities
• Resumes
• Job Seekers
• Employers
• Tools
• RSS
• News
• Vulns
• Security Research

• info
• discussion
• exploit
• solution
• references

Symantec Ghost Corporate Edition 7.0 Plain Text Credentials Vulnerability

Symantec Ghost is an application used for enterprise wide remote PC deployment, recovery, cloning, and migration. It enables and administrator to deploy or restore an OS image or application onto a PC and migrate user settings and profiles to customize the PC.

An issue has been reported in Ghost which could disclose authentication credentials to local users.

A user account is created on the local machines for the Ghost application to run under when carrying out PC deployment tasks. Allegedly, the credentials are stored in the registry in plain text.

As a result, it may be possible for a local user to steal authentication credentials of the service.

It should be noted that reports indicate, access to the registry key in question require administrative privileges.