Symantec Ghost Solution Suite Backup File Handling Memory Corruption (SYM12-016)

Medium Nessus Plugin ID 62716


The remote Windows host has an application installed that is affected by a memory corruption vulnerability.


The Symantec Ghost Solution Suite install on the remote Windows host is earlier than build As such, it is potentially affected by a memory corruption vulnerability when parsing specially crafted '.gho' files. By exploiting this flaw, a remote attacker could execute arbitrary code on the remote host subject to the privileges of the user running the affected application.


If necessary, upgrade to Symantec Ghost Solution Suite version 2.5.1 and ensure that the install is build or above. Then apply patch GSS25x_b2620, which results in build

See Also

Plugin Details

Severity: Medium

ID: 62716

File Name: symantec_ghost_suite_sym12-016.nasl

Version: $Revision: 1.3 $

Type: local

Agent: windows

Family: Windows

Published: 2012/10/26

Modified: 2016/05/06

Dependencies: 62715

Risk Information

Risk Factor: Medium


Base Score: 6.8

Temporal Score: 5.9

Vector: CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P

Temporal Vector: CVSS2#E:ND/RL:OF/RC:C

Vulnerability Information

CPE: cpe:/a:symantec:ghost_solutions_suite

Required KB Items: SMB/Symantec Ghost Suite/Build, SMB/Symantec Ghost Suite/Path

Exploit Available: false

Exploit Ease: No known exploits are available

Patch Publication Date: 2012/10/10

Vulnerability Publication Date: 2012/10/10

Reference Information

CVE: CVE-2012-0306

BID: 55748

OSVDB: 86151