Vulnerability CVE-2006-1286


Published: 2006-03-19   Modified: 2012-02-12

Description:
Buffer overflow in the login dialog in dbisqlc.exe in SQLAnywhere for Symantec Ghost 8.0 and 8.2, as used in Symantec Ghost Solutions Suite (SGSS) 1.0, might allow local users to read certain sensitive information from the database.

CVSS2 => (AV:L/AC:L/Au:N/C:P/I:N/A:N)

CVSS Base Score
Impact Subscore
Exploitability Subscore
2.1/10
2.9/10
3.9/10
Exploit range
Attack complexity
Authentication
Local
Low
No required
Confidentiality impact
Integrity impact
Availability impact
Partial
None
None
Affected software
Symantec -> Ghost solutions suite 
Symantec -> Norton ghost 

 References:
http://www.vupen.com/english/advisories/2006/0870
http://securityresponse.symantec.com/avcenter/security/Content/2006.03.07.html
http://secunia.com/advisories/19171
http://xforce.iss.net/xforce/xfdb/25089
http://securitytracker.com/id?1015733

Copyright 2021, cxsecurity.com

 

Back to Top