CVE-2006-1285

high

Description

SQLAnywhere in Symantec Ghost 8.0 and 8.2, as used in Symantec Ghost Solutions Suite (SGSS) 1.0, gives read and write permissions to all users for database shared memory sections, which allows local users to access and possibly modify certain information.

References

http://www.vupen.com/english/advisories/2006/0870

http://www.securityfocus.com/bid/17019

http://securitytracker.com/id?1015733

http://securityresponse.symantec.com/avcenter/security/Content/2006.03.07.html

http://secunia.com/advisories/19171

Details

Source: Mitre, NVD

Published: 2006-03-19

Updated: 2026-06-16

Risk Information

CVSS v2

Base Score: 3.2

Vector: CVSS2#AV:L/AC:L/Au:S/C:P/I:P/A:N

Severity: Low

CVSS v3

Base Score: 7.1

Vector: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N

Severity: High

EPSS

EPSS: 0.00069