[原文]Symantec Ghost 6.5 and earlier allows a remote attacker to create a denial of service by sending large (> 45Kb) amounts of data to the Ghost Configuration Server on port 1347, which triggers an error that is not properly handled.
Discovered by Peter Gründl <peter.grundl@defcom.com> and posted to Bugtraq on April 11, 2001.
-
受影响的程序版本
Symantec Ghost Corporate Edition 6.5
-
Microsoft Windows 2000 Professional
-
Microsoft Windows 98
-
Microsoft Windows NT 4.0
-
漏洞讨论
Symantec Ghost is vulnerable to a trivial denial of service via TCP port 1347. The configuration server of Symantec Ghost listens on port 1347. If a remote attacker were to connect to port 1347 and supply a character string consisting of approximately 45 kilobytes, Symantec Ghost would cease to function properly. Restarting the application is required in order to regain normal operations.
-
漏洞利用
Supplying a character string consisting of approximately 45 kilobytes over port 1347 will cause Symantec Ghost to cease functioning.
-
解决方案
Symantec has rectified this issue with the release of Ghost version 7.0. Upgrades to 7.0 are free for those who purchased Upgrade Insurance as part of their license. Direct all inquiries to: