Symantec Ghost Solution Suite 1.1 before 1.1 patch 2, 2.0.0, and 2.0.1 does not authenticate connections between the console and the Ghost Management Agent, which allows remote attackers to execute arbitrary commands via unspecified RPC requests in conjunction with ARP spoofing.
References
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2008-02-08T01:00:00
Updated: 2008-02-13T10:00:00
Reserved: 2008-02-06T00:00:00
Link: CVE-2008-0640
JSON object: View
NVD Information
Status : Analyzed
Published: 2008-02-08T02:00:00.000
Modified: 2011-07-25T04:00:00.000
Link: CVE-2008-0640
JSON object: View
Redhat Information
No data.
CWE