CVE-2006-1285

Sažetak

SQLAnywhere in Symantec Ghost 8.0 and 8.2, as used in Symantec Ghost Solutions Suite (SGSS) 1.0, gives read and write permissions to all users for database shared memory sections, which allows local users to access and possibly modify certain information.

Reference

http://secunia.com/advisories/19171
http://securityresponse.symantec.com/avcenter/security/Content/2006.03.07.html
http://securitytracker.com/id?1015733
http://www.securityfocus.com/bid/17019
http://www.vupen.com/english/advisories/2006/0870

CVSS

Base:	3.2
Impact:	4.9
Exploitability:	3.1

Pristup

Vektor	Složenost	Autentikacija
LOCAL	LOW	SINGLE

Impact

Povjerljivost	Cjelovitost	Dostupnost
PARTIAL	PARTIAL	NONE

CVSS vektor

AV:L/AC:L/Au:S/C:P/I:P/A:N

Zadnje važnije ažuriranje

08-03-2011 - 02:32

Objavljeno

19-03-2006 - 23:02