CVE-2006-1285
Summary
| CVE | CVE-2006-1285 |
|---|---|
| State | PUBLIC |
| Assigner | [email protected] |
| Source Priority | CVE Program / NVD first with legacy fallback |
| Published | 2006-03-19 23:02:00 UTC |
| Updated | 2011-03-08 02:32:00 UTC |
| Description | SQLAnywhere in Symantec Ghost 8.0 and 8.2, as used in Symantec Ghost Solutions Suite (SGSS) 1.0, gives read and write permissions to all users for database shared memory sections, which allows local users to access and possibly modify certain information. |
Risk And Classification
Problem Types: NVD-CWE-Other
NVD Known Affected Configurations (CPE 2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | Symantec | Ghost Solutions Suite | 1.0 | All | All | All |
| Application | Symantec | Ghost Solutions Suite | 1.0 | All | All | All |
| Application | Symantec | Norton Ghost | 8.0 | All | All | All |
| Application | Symantec | Norton Ghost | 8.2 | All | All | All |
| Application | Symantec | Norton Ghost | 8.0 | All | All | All |
| Application | Symantec | Norton Ghost | 8.2 | All | All | All |
References
| Reference | Source | Link | Tags |
|---|---|---|---|
| Symantec Ghost Multiple Vulnerabilities - Advisories - Secunia | SECUNIA | secunia.com | Vendor Advisory |
| Symantec Ghost: Local access vulnerabilities in Database | CONFIRM | securityresponse.symantec.com | |
| Webmail : Solution de messagerie professionnelle - OVHcloud- OVH | VUPEN | www.vupen.com | |
| Symantec Ghost SQLAnywhere Local Information Disclosure and Data Corruption Vulnerability | BID | www.securityfocus.com | |
| SecurityTracker.com Archives - Symantec Ghost Underlying Database Bugs May Let Local Users Access the Database | SECTRACK | securitytracker.com | |
| CVE Program record | CVE.ORG | www.cve.org | canonical |
| NVD vulnerability detail | NVD | nvd.nist.gov | canonical, analysis |
No vendor comments have been submitted for this CVE.
There are currently no legacy QID mappings associated with this CVE.