Improper Sign-Extend Operations in Symantec Ghost Solutions Suite and Deployment Solution
CVE-2015-5689

Currently unrated

Key Information:

Vendor

Symantec
Status
Ghost Solutions Suite
Deployment Solution
Vendor
CVE Published:
20 September 2015

What is CVE-2015-5689?

The Ghost Explorer Utility within Symantec Ghost Solutions Suite and Deployment Solution is vulnerable due to improper sign-extend operations performed before accessing array elements. This flaw could be exploited by remote attackers to execute arbitrary code, leading to potential denial of service or the unauthorized disclosure of sensitive information via a specially crafted Ghost image.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

References

http://zerodayinitiative.com/advisories/ZDI-15-419/
x_refsource_MISC
http://www.securitytracker.com/id/1033577
vdb-entryx_refsource_SECTRACK
http://www.symantec.com/security_response/securityupdates...
x_refsource_CONFIRM

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.