15 matches found
EUVD-2006-1288
Malware in sbrugna...
EUVD-2006-1290
Malware in sbrugna...
CVE-2006-1284
The installation of SQLAnywhere in Symantec Ghost 8.0 and 8.2, as used in Symantec Ghost Solutions Suite SGSS 1.0, includes a default administrator login account and password, which allows local users to gain privileges or modify tasks...
Information disclosure
SQLAnywhere in Symantec Ghost 8.0 and 8.2, as used in Symantec Ghost Solutions Suite SGSS 1.0, gives read and write permissions to all users for database shared memory sections, which allows local users to access and possibly modify certain information...
CVE-2006-1285
SQLAnywhere in Symantec Ghost 8.0 and 8.2, as used in Symantec Ghost Solutions Suite SGSS 1.0, gives read and write permissions to all users for database shared memory sections, which allows local users to access and possibly modify certain information...
Buffer overflow
Buffer overflow in the login dialog in dbisqlc.exe in SQLAnywhere for Symantec Ghost 8.0 and 8.2, as used in Symantec Ghost Solutions Suite SGSS 1.0, might allow local users to read certain sensitive information from the database...
Default credentials
The installation of SQLAnywhere in Symantec Ghost 8.0 and 8.2, as used in Symantec Ghost Solutions Suite SGSS 1.0, includes a default administrator login account and password, which allows local users to gain privileges or modify tasks...
CVE-2006-1286
Buffer overflow in the login dialog in dbisqlc.exe in SQLAnywhere for Symantec Ghost 8.0 and 8.2, as used in Symantec Ghost Solutions Suite SGSS 1.0, might allow local users to read certain sensitive information from the database...
CVE-2006-1285
SQLAnywhere in Symantec Ghost 8.0 and 8.2, as used in Symantec Ghost Solutions Suite SGSS 1.0, gives read and write permissions to all users for database shared memory sections, which allows local users to access and possibly modify certain information...
CVE-2006-1286
The CVE covers a local buffer overflow in the login dialog (dbisqlc.exe) of SQL Anywhere used with Symantec Ghost 8.0/8.2 (SGSS 1.0). Root cause: improper handling in the login dialog could allow a local user to read sensitive data from the database. Impact per sources: potential unauthorized inf...
CVE-2006-1285
The CVE-2006-1285 issue affects Symantec Ghost 8.0/8.2 (as used in Symantec Ghost Solutions Suite 1.0). The root cause is a memory-mapping permission problem in the database shared memory, causing read/write access for all users and enabling potential local access to data. Affected component: SQL...
CVE-2006-1286
Buffer overflow in the login dialog in dbisqlc.exe in SQLAnywhere for Symantec Ghost 8.0 and 8.2, as used in Symantec Ghost Solutions Suite SGSS 1.0, might allow local users to read certain sensitive information from the database...
CVE-2006-1284
The installation of SQLAnywhere in Symantec Ghost 8.0 and 8.2, as used in Symantec Ghost Solutions Suite SGSS 1.0, includes a default administrator login account and password, which allows local users to gain privileges or modify tasks...
CVE-2006-1284
The CVE-2006-1284 entry concerns a default administrator login/password left during installation of SQLAnywhere in Symantec Ghost 8.0/8.2, as used in Symantec Ghost Solutions Suite (SGSS) 1.0. This local-privilege issue could let a local user gain privileges or modify tasks. Technical context fro...
Symantec Ghost: Local access vulnerabilities in Database
SUMMARY Symantec engineers updated the db component to address three local access vulnerabilities discovered in the database installed with Symantec Ghost and the Central Management Console in Symantec Ghost Solutions Suite SGSS 1.0. Exploitation of any of these issues requires physical access to...