Page 3 of 13 results (0.004 seconds)

CVSS: 2.1EPSS: 0%CPEs: 3EXPL: 0

Buffer overflow in the login dialog in dbisqlc.exe in SQLAnywhere for Symantec Ghost 8.0 and 8.2, as used in Symantec Ghost Solutions Suite (SGSS) 1.0, might allow local users to read certain sensitive information from the database. • http://secunia.com/advisories/19171 http://securityresponse.symantec.com/avcenter/security/Content/2006.03.07.html http://securitytracker.com/id?1015733 http://www.vupen.com/english/advisories/2006/0870 https://exchange.xforce.ibmcloud.com/vulnerabilities/25089 •

CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 2

Symantec Ghost 7.0 stores usernames and passwords in plaintext in the NGServer\params registry key, which could allow an attacker to gain privileges. • http://marc.info/?l=bugtraq&m=101529792821615&w=2 http://online.securityfocus.com/archive/1/258293 http://www.iss.net/security_center/static/8305.php http://www.securityfocus.com/bid/4181 •

CVSS: 5.0EPSS: 0%CPEs: 1EXPL: 2

Symantec Ghost 6.5 and earlier allows a remote attacker to create a denial of service by sending large (> 45Kb) amounts of data to the Ghost Configuration Server on port 1347, which triggers an error that is not properly handled. • http://archives.neohapsis.com/archives/bugtraq/2001-04/0175.html http://www.securityfocus.com/bid/2570 https://exchange.xforce.ibmcloud.com/vulnerabilities/6357 •