Vulnerability Description
SQLAnywhere in Symantec Ghost 8.0 and 8.2, as used in Symantec Ghost Solutions Suite (SGSS) 1.0, gives read and write permissions to all users for database shared memory sections, which allows local users to access and possibly modify certain information.
CVSS Score
LOW
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Symantec | Ghost Solutions Suite | 1.0 |
| Symantec | Norton Ghost | 8.0 |
References
- http://secunia.com/advisories/19171Vendor Advisory
- http://securityresponse.symantec.com/avcenter/security/Content/2006.03.07.html
- http://securitytracker.com/id?1015733
- http://www.securityfocus.com/bid/17019
- http://www.vupen.com/english/advisories/2006/0870
- http://secunia.com/advisories/19171Vendor Advisory
- http://securityresponse.symantec.com/avcenter/security/Content/2006.03.07.html
- http://securitytracker.com/id?1015733
- http://www.securityfocus.com/bid/17019
- http://www.vupen.com/english/advisories/2006/0870
FAQ
What is CVE-2006-1285?
CVE-2006-1285 is a vulnerability with a CVSS score of 3.2 (LOW). SQLAnywhere in Symantec Ghost 8.0 and 8.2, as used in Symantec Ghost Solutions Suite (SGSS) 1.0, gives read and write permissions to all users for database shared memory sections, which allows local u...
How severe is CVE-2006-1285?
CVE-2006-1285 has been rated LOW with a CVSS base score of 3.2/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2006-1285?
Check the references section above for vendor advisories and patch information. Affected products include: Symantec Ghost Solutions Suite, Symantec Norton Ghost.