Multiple Symantec Ghost Solution Suite Vulnerabilities

Three remote denial of service vulnerabilities have been identified in Symantec Ghost Solution Suite.

SYM07-013
June 5, 2007
Multiple Symantec Ghost Solution Suite Vulnerabilities
Revision History
None

Risk Impact
Medium

Remote Access Yes
Local Access Yes
Authentication Required No
Exploit publicly available No


Overview
Multiple denial of service vulnerabilities have been identified in Symantec Ghost Solution Suite.

Affected Products
Product Version
Symantec Ghost Solution Suite  2.0.0 and earlier  


Details
Three remote denial of service vulnerabilities have been identified in Symantec Ghost Solution Suite. All three vulnerabilities affect both the client and server daemons. Each vulnerability is triggered by sending a malformed UDP Packet to ether the client or server daemon.

Symantec response
Symantec has released updates for all supported 2.0.0 versions of Symantec Ghost Solution Suite. These updates are available through LiveUpdate.

Symantec has released the following downloadable updates for all supported 1.1 version of Symantec Ghost Solution Suite.

Please download the appropriate version of the patch for your language:

Ghost Solution Suite 1.1 English
Ghost Solution Suite 1.1 German
Ghost Solution Suite 1.1 French
Ghost Solution Suite 1.1 Chinese
Ghost Solution Suite 1.1 Japanese
Ghost Solution Suite 1.1 Korean
To date, Symantec is not aware of any reported attempts to exploit this vulnerability

Credit
Symantec would like to thank Pravus for reporting this issue to iDefense Labs. Symantec would like to thank iDefense Labs for reporting these issues to Symantec, and working with us on the resolution.

Telegram Подписывайтесь на канал "SecurityLab" в Telegram, чтобы первыми узнавать о новостях и эксклюзивных материалах по информационной безопасности.