Description
EMC NetWorker (formerly Legato NetWorker) before 7.0 stores passwords in plaintext in the daemon.log file, which allows local users to gain privileges by reading the password from the file. NOTE: this was originally reported for Legato NetWorker 6.1 on the Solaris 7 platform.
References (3)
Core 3
Core References
Vendor Advisory vdb-entry
x_refsource_xf
http://www.iss.net/security_center/static/7898.php
Vendor Advisory mailing-list
x_refsource_bugtraq
http://online.securityfocus.com/archive/1/249420
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/3842
Scores
EPSS
0.0007
EPSS Percentile
20.3%
Details
Status
published
Products (1)
emc/networker
6.1
Published
Mar 25, 2002
Tracked Since
Feb 18, 2026