Symantec » Ghost Solutions Suite : Security Vulnerabilities, CVEs, Published In 2015 (Code Execution)
ghostexp.exe in Ghost Explorer Utility in Symantec Ghost Solutions Suite (GSS) before 3.0 HF2 12.0.0.8010 and Symantec Deployment Solution (DS) before 7.6 HF4 12.0.0.7045 performs improper sign-extend operations before array-element accesses, which allows remote attackers to execute arbitrary code, cause a denial of service (application crash), or possibly obtain sensitive information via a crafted Ghost image.
Max CVSS
6.8
EPSS Score
7.58%
Published
2015-09-20
Updated
2016-12-22
1 vulnerabilities found