Symantec Ghost Solution Suite UDP Packet Multiple Denial of Service Vulnerabilities

TITLE: Symantec Ghost Solution Suite UDP Packet Multiple Denial of Service Vulnerabilities
CLASS: Failure to Handle Exceptional Conditions
CVE:
REMOTE: Yes
LOCAL: No
PUBLISHED: Jun 05 2007 12:00AM
UPDATE: Jun 06 2007 04:40PM
CREDIT: Pravus is credited with discovering these issues.
VULNERABLE:

Symantec Ghost Solutions Suite (SGSS) 1.1
Symantec Ghost Solutions Suite (SGSS) 1.0
Symantec Ghost Solution Suite (SGSS) 2.0
NOT VULNERABLE:

Vai alla pagina originale su Security Focus

Discussion

Symantec Ghost Solution Suite is prone to multiple denial-of-service vulnerabilities because it fails to handle a certain UDP network packet.

Successful exploits may allow remote attackers to cause denial-of-service conditions via the client or server daemons.

These issues affects versions 2.0.0 and prior.

Exploit

Currently we are not aware of any exploits for these issues. If you feel we are in error or if you are aware of more recent information, please mail us at: mailto:vuldb@securityfocus.com.

Solution

Solution:
The vendor released an advisory and fixes to address these issues. Please see the references more information.


Symantec Ghost Solutions Suite (SGSS) 1.1

References

References:

PhpLog

BNLug Benevento Linux Users Group