CVE-2015-5689
medium
CVSS v3
—
CVSS v2
6.8
VIR risk
6.8
Description
ghostexp.exe in Ghost Explorer Utility in Symantec Ghost Solutions Suite (GSS) before 3.0 HF2 12.0.0.8010 and Symantec Deployment Solution (DS) before 7.6 HF4 12.0.0.7045 performs improper sign-extend operations before array-element accesses, which allows remote attackers to execute arbitrary code, cause a denial of service (application crash), or possibly obtain sensitive information via a crafted Ghost image.
Predictions
Exploit likelihood
20%
Patch ETA
—
Heuristic predictions, AS-IS, for prioritization only.
Mitigations
Vendor advisory: secure@symantec.com — http://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&year=&suid=20150902_00
Application impact
| Vendor | Product | Versions | Fixed |
|---|---|---|---|
| symantec | deployment_solution | 6.9 | |
| symantec | ghost_solutions_suite | 1.0 | |
| symantec | ghost_solutions_suite | 1.1 | |
| symantec | ghost_solutions_suite | 2.0 | |
| symantec | ghost_solutions_suite | 2.0.1 | |
| symantec | ghost_solutions_suite | 2.0.2 | |
| symantec | ghost_solutions_suite | 2.1 | |
References
- http://www.securityfocus.com/bid/76498
- http://www.securitytracker.com/id/1033577
- http://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&year=&suid=20150902_00
- http://zerodayinitiative.com/advisories/ZDI-15-419/
- http://www.securityfocus.com/bid/76498
- http://www.securitytracker.com/id/1033577
- http://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&year=&suid=20150902_00
- http://zerodayinitiative.com/advisories/ZDI-15-419/
CWEs
CWE-119
Verify integrity in audit chain (admin only). AS-IS.