[原文]The installation of SQLAnywhere in Symantec Ghost 8.0 and 8.2, as used in Symantec Ghost Solutions Suite (SGSS) 1.0, includes a default administrator login account and password, which allows local users to gain privileges or modify tasks.
Upgrade to version 8.3 or higher of Symantec Ghost (or 1.1 of Symantec Ghost Solutions Suite), as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.
Symantec Ghost 8.3
Symantec Ghost Solutions Suite (SGSS) 1.1
Symantec Ghost is prone to a vulnerability that may allow a local attacker to gain elevated privileges.
The vulnerability presents itself in the Symantec SQLAnywhere database installed with Symantec Ghost and the Central Management Console in Symantec Ghost Solutions Suite (SGSS).
A successful attack can allow an attacker to obtain the authentication credentials and carry out various attacks such as modifying and deleting administrative tasks against a vulnerable computer. This issue can also allow attackers to execute arbitrary to gain elevated privileges on an affected computer.
All builds of Symantec Ghost 8.0 (EOL / EOS 11/15/2005) and Ghost 8.2 (shipped as a part of SGSS 1.0) are vulnerable to this issue.
An exploit is not required.
Symantec has released an advisory (SYM06-003) including fixes to address this issue. Symantec Ghost 8.3 shipped as a part of Symantec Ghost Solutions Suite 1.1 is not vulnerable to this issue.