CVE-2006-1285

SQLAnywhere in Symantec Ghost 8.0 and 8.2, as used in Symantec Ghost Solutions Suite (SGSS) 1.0, gives read and write permissions to all users for database shared memory sections, which allows local users to access and possibly modify certain information.

Published: Mar 20, 2006
Updated: Apr 13, 2023
CVE: CVE-2006-1285
Severity: Low
Exploit:

CVSS v2:

Severity: Low
Score: 3.2
AV:L/AC:L/Au:S/C:P/I:P/A:N

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
symantec / ghost_solutions_suite	1.0	1.0.x
symantec / norton_ghost	8.0	8.0.x
symantec / norton_ghost	8.2	8.2.x

http://secunia.com/advisories/19171
http://securityresponse.symantec.com/avcenter/security/Content/2006.03.07.html
http://securitytracker.com/id?1015733
http://www.securityfocus.com/bid/17019
http://www.vupen.com/english/advisories/2006/0870

Vulnerability Database

290,206

CVE-2006-1285