CVE-2006-1286

Published Mar 19, 2006

Last updated a month ago

CVSS info 2.1

Overview

Description: Buffer overflow in the login dialog in dbisqlc.exe in SQLAnywhere for Symantec Ghost 8.0 and 8.2, as used in Symantec Ghost Solutions Suite (SGSS) 1.0, might allow local users to read certain sensitive information from the database.
Source: cve@mitre.org
NVD status: Deferred

Risk scores

CVSS 2.0

Type: Primary
Base score: 2.1
Impact score: 2.9
Exploitability score: 3.9
Vector string: AV:L/AC:L/Au:N/C:P/I:N/A:N

Weaknesses

nvd@nist.gov: NVD-CWE-Other

Hype score: Not currently trending

Evaluator

Comment: -
Impact: -
Solution: -

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:symantec:ghost_solutions_suite:1.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5CC78C2D-E376-40C9-A413-E7F1740F8CF1"
          },
          {
            "criteria": "cpe:2.3:a:symantec:norton_ghost:8.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "7C4506E0-F4FE-43F0-886A-2F18C39934DA"
          },
          {
            "criteria": "cpe:2.3:a:symantec:norton_ghost:8.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "48B6AF37-11B3-4F38-B6E9-04FC32A28630"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

References

Sources include official advisories and independent security research.

Overview

Risk scores

CVSS 2.0

Weaknesses

Social media

Evaluator

Configurations

References