CVE-2015-5689
published 2015-09-20CVE-2015-5689: ghostexp.exe in Ghost Explorer Utility in Symantec Ghost Solutions Suite (GSS) before 3.0 HF2 12.0.0.8010 and Symantec Deployment Solution (DS) before 7.6 HF4…
medium6.8CVSS 3.1
AVNACMAuNCPIPAP
ghostexp.exe in Ghost Explorer Utility in Symantec Ghost Solutions Suite (GSS) before 3.0 HF2 12.0.0.8010 and Symantec Deployment Solution (DS) before 7.6 HF4 12.0.0.7045 performs improper sign-extend operations before array-element accesses, which allows remote attackers to execute arbitrary code, cause a denial of service (application crash), or possibly obtain sensitive information via a crafted Ghost image.
Affected
8 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| isc | bind9 | >= 0 < 1:9.9.5.dfsg-3ubuntu0.4 | 1:9.9.5.dfsg-3ubuntu0.4 |
| symantec | deployment_solution | — | — |
| symantec | ghost_solutions_suite | — | — |
| symantec | ghost_solutions_suite | — | — |
| symantec | ghost_solutions_suite | — | — |
| symantec | ghost_solutions_suite | — | — |
| symantec | ghost_solutions_suite | — | — |
| symantec | ghost_solutions_suite | — | — |
CVSS provenance
nvd6.8MEDIUMAV:N/AC:M/Au:N/C:P/I:P/A:P
osv7.1HIGH