CVE-2006-1286

{"id": "CVE-2006-1286", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 2.1, "accessVector": "LOCAL", "vectorString": "AV:L/AC:L/Au:N/C:P/I:N/A:N", "authentication": "NONE", "integrityImpact": "NONE", "accessComplexity": "LOW", "availabilityImpact": "NONE", "confidentialityImpact": "PARTIAL"}, "acInsufInfo": false, "impactScore": 2.9, "baseSeverity": "LOW", "obtainAllPrivilege": false, "exploitabilityScore": 3.9, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}]}, "published": "2006-03-19T23:02:00.000", "references": [{"url": "http://secunia.com/advisories/19171", "tags": ["Vendor Advisory"], "source": "cve@mitre.org"}, {"url": "http://securityresponse.symantec.com/avcenter/security/Content/2006.03.07.html", "source": "cve@mitre.org"}, {"url": "http://securitytracker.com/id?1015733", "source": "cve@mitre.org"}, {"url": "http://www.vupen.com/english/advisories/2006/0870", "source": "cve@mitre.org"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/25089", "source": "cve@mitre.org"}, {"url": "http://secunia.com/advisories/19171", "tags": ["Vendor Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://securityresponse.symantec.com/avcenter/security/Content/2006.03.07.html", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://securitytracker.com/id?1015733", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.vupen.com/english/advisories/2006/0870", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/25089", "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "NVD-CWE-Other"}]}], "descriptions": [{"lang": "en", "value": "Buffer overflow in the login dialog in dbisqlc.exe in SQLAnywhere for Symantec Ghost 8.0 and 8.2, as used in Symantec Ghost Solutions Suite (SGSS) 1.0, might allow local users to read certain sensitive information from the database."}], "lastModified": "2024-11-21T00:08:30.500", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:symantec:ghost_solutions_suite:1.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5CC78C2D-E376-40C9-A413-E7F1740F8CF1"}, {"criteria": "cpe:2.3:a:symantec:norton_ghost:8.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "7C4506E0-F4FE-43F0-886A-2F18C39934DA"}, {"criteria": "cpe:2.3:a:symantec:norton_ghost:8.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "48B6AF37-11B3-4F38-B6E9-04FC32A28630"}], "operator": "OR"}]}], "sourceIdentifier": "cve@mitre.org", "evaluatorSolution": "Update to Symantec Ghost 8.3 that is shipped as a part of Symantec Ghost Solutions Suite 1.1.\r\n"}