Memory Corruption in Symantec Ghost Could Allow Arbitrary Code Execution

Executive Summary Microsoft is providing notification of the discovery and remediation of a vulnerability affecting Symantec Ghost Solutions Suite SGSS 2.5.1, build 11.5.1.2266 and earlier versions. Microsoft discovered and disclosed the vulnerability under coordinated vulnerability disclosure to...

Symantec Ghost Solution Suite Backup File Handling Memory Corruption (SYM12-016)

The Symantec Ghost Solution Suite install on the remote Windows host is earlier than build 11.5.1.2620. As such, it is potentially affected by a memory corruption vulnerability when parsing specially crafted '.gho' files. By exploiting this flaw, a remote attacker could execute arbitrary code on...

CVE-2012-0306

CVE-2012-0306 affects Symantec Ghost Solution Suite (SGSS) 2.x through 2.5.1. The issue is a memory corruption vulnerability in how Ghost Explorer parses specially crafted GHO/backup files. Successful exploitation could allow arbitrary code execution with the current user’s privileges (potentiall...

Symantec Ghost Solution Suite Memory Corruption

SUMMARY Symantecs Ghost Solution Suite is susceptible to memory corruption issues that could result in an application denial of service or possibly arbitrary code execution. AFFECTED PRODUCTS Product | Version | Solution ---|---|--- Symantec Ghost Solution Suite | 2.x | Upgrade to the latest...