22 matches found
EUVD-2008-0650
Malware in sbrugna...
EUVD-2018-10095
Malware in sbrugna...
CVE-2016-6590
A privilege escalation vulnerability exists when loading DLLs during boot up and reboot in Symantec IT Management Suite 8.0 prior to 8.0 HF4 and Suite 7.6 prior to 7.6 HF7, Symantec Ghost Solution Suite 3.1 prior to 3.1 MP4, Symantec Endpoint Virtualization 7.x prior to 7.6 HF7, and Symantec...
CVE-2016-6590
The CVE-2016-6590 issue is a local privilege-escalation caused by loading DLLs during boot/reboot without absolute paths in multiple Symantec products. Affected: IT Management Suite 8.0 (before HF4), ITMS 7.6 (before HF7); Ghost Solution Suite 3.1 (before MP4); Endpoint Virtualization 7.x (before...
CVE-2018-18364
Symantec Ghost Solution Suite GSS versions prior to 3.3 RU1 may be susceptible to a DLL hijacking vulnerability, which is a type of issue whereby a potential attacker attempts to execute unexpected code on your machine. This occurs via placement of a potentially foreign file DLL that the attacker...
Design/Logic Flaw
Symantec Ghost Solution Suite GSS versions prior to 3.3 RU1 may be susceptible to a DLL hijacking vulnerability, which is a type of issue whereby a potential attacker attempts to execute unexpected code on your machine. This occurs via placement of a potentially foreign file DLL that the attacker...
CVE-2018-18364
Symantec Ghost Solution Suite GSS versions prior to 3.3 RU1 may be susceptible to a DLL hijacking vulnerability, which is a type of issue whereby a potential attacker attempts to execute unexpected code on your machine. This occurs via placement of a potentially foreign file DLL that the attacker...
Symantec Ghost Solution Suite DLL Hijack
SUMMARY Symantec has released an update to address an issue that was discovered in the Ghost Solution Suite GSS product. AFFECTED PRODUCTS Ghost Solution Suite GSS --- CVE | Affected Versions | Remediation CVE-2018-18364 | Prior to 3.3 RU1 | Upgrade to 3.3 RU1 ISSUES CVE-2018-18364 ---...
DLL Loading Issue in Symantec Enterprise Products
SUMMARY Symantec has released updates to address a DLL loading issue in Symantec IT Management Suite ITMS, Symantec Ghost Solution Suite GSS, Symantec Encryption Desktop SED, and Symantec Endpoint Virtualization SEV. AFFECTED PRODUCTS Symantec IT Management Suite 8.0 --- CVE | Affected Versions |...
Symantec Ghost Solution Suite Installed
Symantec Solution Ghost Suite, a system management and computer imaging application, is installed on the remote Windows host. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid62715; scriptversion"1.8"; scriptsetattributeattribute:"pluginmodificationdate",...
Symantec Ghost Solution Suite Backup File Handling Memory Corruption (SYM12-016)
The Symantec Ghost Solution Suite install on the remote Windows host is earlier than build 11.5.1.2620. As such, it is potentially affected by a memory corruption vulnerability when parsing specially crafted '.gho' files. By exploiting this flaw, a remote attacker could execute arbitrary code on...
CVE-2012-0306
Symantec Ghost Solution Suite 2.x through 2.5.1 allows remote attackers to execute arbitrary code or cause a denial of service memory corruption via a crafted backup file...
CVE-2012-0306
CVE-2012-0306 affects Symantec Ghost Solution Suite (SGSS) 2.x through 2.5.1. The issue is a memory corruption vulnerability in how Ghost Explorer parses specially crafted GHO/backup files. Successful exploitation could allow arbitrary code execution with the current user’s privileges (potentiall...
Symantec Ghost Solution Suite Memory Corruption
SUMMARY Symantecs Ghost Solution Suite is susceptible to memory corruption issues that could result in an application denial of service or possibly arbitrary code execution. AFFECTED PRODUCTS Product | Version | Solution ---|---|--- Symantec Ghost Solution Suite | 2.x | Upgrade to the latest...
Design/Logic Flaw
Symantec Ghost Solution Suite 1.1 before 1.1 patch 2, 2.0.0, and 2.0.1 does not authenticate connections between the console and the Ghost Management Agent, which allows remote attackers to execute arbitrary commands via unspecified RPC requests in conjunction with ARP spoofing...
CVE-2008-0640
The CVE-2008-0640 issue concerns Symantec Ghost Solution Suite versions 1.1 (before patch 2), 2.0.0, and 2.0.1, where the console and Ghost Management Agent do not authenticate the connection. This lack of authentication allows remote attackers to execute arbitrary commands via unspecified RPC re...
CVE-2008-0640
Symantec Ghost Solution Suite 1.1 before 1.1 patch 2, 2.0.0, and 2.0.1 does not authenticate connections between the console and the Ghost Management Agent, which allows remote attackers to execute arbitrary commands via unspecified RPC requests in conjunction with ARP spoofing...
Design/Logic Flaw
Multiple vulnerabilities in Symantec Ghost Solution Suite 2.0.0 and earlier, with Ghost 8.0.992 and possibly other versions, allow remote attackers to cause a denial of service client or server crash via malformed requests to the daemon port, 1346/udp or 1347/udp...
CVE-2007-3132
Multiple vulnerabilities in Symantec Ghost Solution Suite 2.0.0 and earlier, with Ghost 8.0.992 and possibly other versions, allow remote attackers to cause a denial of service client or server crash via malformed requests to the daemon port, 1346/udp or 1347/udp...
CVE-2007-3132
CVE-2007-3132 describes multiple vulnerabilities in Symantec Ghost Solution Suite 2.0.0 and earlier (including Ghost 8.0.992 and possibly other versions) that can cause a denial of service. The DoS is triggered by malformed requests sent to the daemon port over UDP: 1346/UDP or 1347/UDP. The prov...