Ghost Vulnerability

User photo
D. SKye Hodges!

In case anyone is following this:

Security, Bomgar Security Notice for CVE-2015-0235


Security, Bomgar Security Notice for CVE-2015-0235


Bomgar Security Notice for CVE-2015-0235

Bomgar is aware and monitoring the new CVE-2015-0235 and it’s applicability to Bomgar. Qualys discovered a buffer overflow in a function of the GNU C Library (glibc). It’s exploitable remotely and makes it possible to achieve arbitrary code execution. Bomgar does utilize a version of Glibc that is identified in the CVE however based on the information available there is no unauthenticated path in Bomgar that is vulnerable. Out of caution Bomgar is currently planning to release a patch in the near term that addresses the finding. Once the patch is made available it will be placed in the Bomgar Self Service portal or via the check for updates in /appliance.

  1. User photo
    e-Xpert Solutions


    any news for the patch ?

    How bomgar will communicates about it ?

    Thank you

  2. User photo

    ‚ÄčIs this the same as CVE-2015-7547?

    If severe enough Bomgar support will email you, but otherwise check for a patch at:

Register or log in to leave a reply to this thread.