CVE-2008-0640
First published: Fri Feb 08 2008(Updated: )
Symantec Ghost Solution Suite 1.1 before 1.1 patch 2, 2.0.0, and 2.0.1 does not authenticate connections between the console and the Ghost Management Agent, which allows remote attackers to execute arbitrary commands via unspecified RPC requests in conjunction with ARP spoofing.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Symantec Ghost Solutions Suite | =2.0.1 | |
| Symantec Ghost Solutions Suite | =2.0.0 | |
| Symantec Ghost Solutions Suite | =1.1 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- collector/nvd-historical
- collector/nvd-index
- agent/references
- agent/weakness
- agent/severity
- agent/author
- agent/type
- agent/description
- agent/event
- agent/softwarecombine
- agent/last-modified-date
- agent/remedy
- agent/first-publish-date
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/symantec
- canonical/symantec ghost solutions suite
- version/symantec ghost solutions suite/2.0.1
- version/symantec ghost solutions suite/2.0.0
- version/symantec ghost solutions suite/1.1