CVE-2018-18364 - NVD | ByteOS Network

NVD Vulnerability Details :

CVE-2018-18364

Analyzed

More Info Official Page

Source-secure@symantec.com

Published At-08 Feb, 2019 | 17:29

Updated At-13 Feb, 2019 | 18:47

Symantec Ghost Solution Suite (GSS) versions prior to 3.3 RU1 may be susceptible to a DLL hijacking vulnerability, which is a type of issue whereby a potential attacker attempts to execute unexpected code on your machine. This occurs via placement of a potentially foreign file (DLL) that the attacker then attempts to run via a linked application.

Metrics

Type	Version	Base score	Base severity	Vector
Primary	3.0	7.3	HIGH	CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H
Primary	2.0	6.0	MEDIUM	AV:N/AC:M/Au:S/C:P/I:P/A:P

CPE Matches

Symantec Corporation

>>ghost_solution_suite>>2.0

cpe:2.3:a:symantec:ghost_solution_suite:2.0:*:*:*:*:*:*:*

Symantec Corporation

>>ghost_solution_suite>>2.5

cpe:2.3:a:symantec:ghost_solution_suite:2.5:*:*:*:*:*:*:*

Symantec Corporation

>>ghost_solution_suite>>3.0

cpe:2.3:a:symantec:ghost_solution_suite:3.0:*:*:*:*:*:*:*

Symantec Corporation

>>ghost_solution_suite>>3.0

cpe:2.3:a:symantec:ghost_solution_suite:3.0:hf1:*:*:*:*:*:*

Symantec Corporation

>>ghost_solution_suite>>3.0

cpe:2.3:a:symantec:ghost_solution_suite:3.0:hf2:*:*:*:*:*:*

Symantec Corporation

>>ghost_solution_suite>>3.0

cpe:2.3:a:symantec:ghost_solution_suite:3.0:hf3:*:*:*:*:*:*

Symantec Corporation

>>ghost_solution_suite>>3.0

cpe:2.3:a:symantec:ghost_solution_suite:3.0:hf4:*:*:*:*:*:*

Symantec Corporation

>>ghost_solution_suite>>3.0

cpe:2.3:a:symantec:ghost_solution_suite:3.0:hf5:*:*:*:*:*:*

Symantec Corporation

>>ghost_solution_suite>>3.1

cpe:2.3:a:symantec:ghost_solution_suite:3.1:*:*:*:*:*:*:*

Symantec Corporation

>>ghost_solution_suite>>3.1

cpe:2.3:a:symantec:ghost_solution_suite:3.1:mp1:*:*:*:*:*:*

Symantec Corporation

>>ghost_solution_suite>>3.1

cpe:2.3:a:symantec:ghost_solution_suite:3.1:mp2:*:*:*:*:*:*

Symantec Corporation

>>ghost_solution_suite>>3.1

cpe:2.3:a:symantec:ghost_solution_suite:3.1:mp3:*:*:*:*:*:*

Symantec Corporation

>>ghost_solution_suite>>3.1

cpe:2.3:a:symantec:ghost_solution_suite:3.1:mp4:*:*:*:*:*:*

Symantec Corporation

>>ghost_solution_suite>>3.1

cpe:2.3:a:symantec:ghost_solution_suite:3.1:mp5:*:*:*:*:*:*

Symantec Corporation

>>ghost_solution_suite>>3.1

cpe:2.3:a:symantec:ghost_solution_suite:3.1:mp6:*:*:*:*:*:*

Symantec Corporation

>>ghost_solution_suite>>3.2

cpe:2.3:a:symantec:ghost_solution_suite:3.2:*:*:*:*:*:*:*

Symantec Corporation

>>ghost_solution_suite>>3.2

cpe:2.3:a:symantec:ghost_solution_suite:3.2:ru1:*:*:*:*:*:*

Symantec Corporation

>>ghost_solution_suite>>3.2

cpe:2.3:a:symantec:ghost_solution_suite:3.2:ru2:*:*:*:*:*:*

Symantec Corporation

>>ghost_solution_suite>>3.2

cpe:2.3:a:symantec:ghost_solution_suite:3.2:ru3:*:*:*:*:*:*

Symantec Corporation

>>ghost_solution_suite>>3.2

cpe:2.3:a:symantec:ghost_solution_suite:3.2:ru4:*:*:*:*:*:*

Symantec Corporation

>>ghost_solution_suite>>3.2

cpe:2.3:a:symantec:ghost_solution_suite:3.2:ru5:*:*:*:*:*:*

Symantec Corporation

>>ghost_solution_suite>>3.2

cpe:2.3:a:symantec:ghost_solution_suite:3.2:ru6:*:*:*:*:*:*

Symantec Corporation

>>ghost_solution_suite>>3.2

cpe:2.3:a:symantec:ghost_solution_suite:3.2:ru7:*:*:*:*:*:*

Symantec Corporation

>>ghost_solution_suite>>3.3

cpe:2.3:a:symantec:ghost_solution_suite:3.3:*:*:*:*:*:*:*

Weaknesses

CWE ID	Type	Source
CWE-426	Primary	nvd@nist.gov

References

Hyperlink	Source	Resource
http://www.securityfocus.com/bid/106684	secure@symantec.com	Third Party Advisory
https://support.symantec.com/en_US/article.SYMSA1474.html	secure@symantec.com	Mitigation Vendor Advisory