Symantec Ghost Solutions Suite vulnerabilities
7 known vulnerabilities affecting symantec/ghost_solutions_suite.
Total CVEs
7
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL1MEDIUM4LOW2
Vulnerabilities
Page 1 of 1
CVE-2015-5689MEDIUMCVSS 6.8v1.0v1.1+4 more2015-09-20
CVE-2015-5689 [MEDIUM] CWE-119 CVE-2015-5689: ghostexp.exe in Ghost Explorer Utility in Symantec Ghost Solutions Suite (GSS) before 3.0 HF2 12.0.0
ghostexp.exe in Ghost Explorer Utility in Symantec Ghost Solutions Suite (GSS) before 3.0 HF2 12.0.0.8010 and Symantec Deployment Solution (DS) before 7.6 HF4 12.0.0.7045 performs improper sign-extend operations before array-element accesses, which allows remote attackers to execute arbitrary code, cause a denial of service (application crash), or pos
nvd
CVE-2012-0306MEDIUMCVSS 6.8v2.0v2.0.0+2 more2012-10-18
CVE-2012-0306 [MEDIUM] CWE-119 CVE-2012-0306: Symantec Ghost Solution Suite 2.x through 2.5.1 allows remote attackers to execute arbitrary code or
Symantec Ghost Solution Suite 2.x through 2.5.1 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted backup file.
nvd
CVE-2008-0640CRITICALCVSS 10.0v1.1v2.0.0+1 more2008-02-08
CVE-2008-0640 [CRITICAL] CWE-287 CVE-2008-0640: Symantec Ghost Solution Suite 1.1 before 1.1 patch 2, 2.0.0, and 2.0.1 does not authenticate connect
Symantec Ghost Solution Suite 1.1 before 1.1 patch 2, 2.0.0, and 2.0.1 does not authenticate connections between the console and the Ghost Management Agent, which allows remote attackers to execute arbitrary commands via unspecified RPC requests in conjunction with ARP spoofing.
nvd
CVE-2007-3132MEDIUMCVSS 5.0≤ 2.02007-06-08
CVE-2007-3132 [MEDIUM] CVE-2007-3132: Multiple vulnerabilities in Symantec Ghost Solution Suite 2.0.0 and earlier, with Ghost 8.0.992 and
Multiple vulnerabilities in Symantec Ghost Solution Suite 2.0.0 and earlier, with Ghost 8.0.992 and possibly other versions, allow remote attackers to cause a denial of service (client or server crash) via malformed requests to the daemon port, 1346/udp or 1347/udp.
nvd
CVE-2006-1284MEDIUMCVSS 4.6v1.02006-03-19
CVE-2006-1284 [MEDIUM] CVE-2006-1284: The installation of SQLAnywhere in Symantec Ghost 8.0 and 8.2, as used in Symantec Ghost Solutions S
The installation of SQLAnywhere in Symantec Ghost 8.0 and 8.2, as used in Symantec Ghost Solutions Suite (SGSS) 1.0, includes a default administrator login account and password, which allows local users to gain privileges or modify tasks.
nvd
CVE-2006-1285LOWCVSS 3.2v1.02006-03-19
CVE-2006-1285 [LOW] CVE-2006-1285: SQLAnywhere in Symantec Ghost 8.0 and 8.2, as used in Symantec Ghost Solutions Suite (SGSS) 1.0, giv
SQLAnywhere in Symantec Ghost 8.0 and 8.2, as used in Symantec Ghost Solutions Suite (SGSS) 1.0, gives read and write permissions to all users for database shared memory sections, which allows local users to access and possibly modify certain information.
nvd
CVE-2006-1286LOWCVSS 2.1v1.02006-03-19
CVE-2006-1286 [LOW] CVE-2006-1286: Buffer overflow in the login dialog in dbisqlc.exe in SQLAnywhere for Symantec Ghost 8.0 and 8.2, as
Buffer overflow in the login dialog in dbisqlc.exe in SQLAnywhere for Symantec Ghost 8.0 and 8.2, as used in Symantec Ghost Solutions Suite (SGSS) 1.0, might allow local users to read certain sensitive information from the database.
nvd