CVE-2006-1285 : SQLAnywhere in Symantec Ghost 8.0 and 8.2, as used in Symantec Ghost Solutions Suite (SGSS) 1.0, gives read and write pe

SQLAnywhere in Symantec Ghost 8.0 and 8.2, as used in Symantec Ghost Solutions Suite (SGSS) 1.0, gives read and write permissions to all users for database shared memory sections, which allows local users to access and possibly modify certain information.

Published 2006-03-19 23:02:00

Updated 2011-03-08 02:32:43

Source MITRE

View at NVD, CVE.org

Exploit prediction scoring system (EPSS) score for CVE-2006-1285

Probability of exploitation activity in the next 30 days: 0.04%

Percentile, the proportion of vulnerabilities that are scored at or less: ~ 8 % EPSS Score History EPSS FAQ

CVSS scores for CVE-2006-1285

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source
3.2	LOW	AV:L/AC:L/Au:S/C:P/I:P/A:N	3.1	4.9	NIST
Access Vector: Local Access Complexity: Low Authentication: Single Confidentiality Impact: Partial Integrity Impact: Partial Availability Impact: None

References for CVE-2006-1285

Products affected by CVE-2006-1285

Symantec » Norton Ghost » Version: 8.0
cpe:2.3:a:symantec:norton_ghost:8.0:*:*:*:*:*:*:*
Matching versions
Symantec » Norton Ghost » Version: 8.2
cpe:2.3:a:symantec:norton_ghost:8.2:*:*:*:*:*:*:*
Matching versions
Symantec » Ghost Solutions Suite » Version: 1.0
cpe:2.3:a:symantec:ghost_solutions_suite:1.0:*:*:*:*:*:*:*
Matching versions

Vulnerability Details : CVE-2006-1285

Exploit prediction scoring system (EPSS) score for CVE-2006-1285

CVSS scores for CVE-2006-1285

References for CVE-2006-1285

Products affected by CVE-2006-1285