CVE-2006-1285

CWE-12854 documents4 sources

Severity

3.2LOW

EPSS

0.2%

top 62.90%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Symantec Ghost Solutions Suite Symantec Norton Ghost

Timeline

PublishedMar 19

Latest updateFeb 12

Description

SQLAnywhere in Symantec Ghost 8.0 and 8.2, as used in Symantec Ghost Solutions Suite (SGSS) 1.0, gives read and write permissions to all users for database shared memory sections, which allows local users to access and possibly modify certain information.

CVSS vector

AV:L/AC:L/C:P/I:P/A:NExploitability: 3.1 | Impact: 4.9

Affected Packages2 packages

▶NVDsymantec/ghost_solutions_suite1.0

▶NVDsymantec/norton_ghost8.0, 8.2+1

🔴Vulnerability Details

GHSA

GHSA-9jwv-7p4v-h436: SQLAnywhere in Symantec Ghost 8↗2022-05-01

▶

CVEList

CVE-2006-1285: SQLAnywhere in Symantec Ghost 8↗2006-03-19

▶

📋Vendor Advisories

Red Hat

postgresql: PostgreSQL missing validation of multibyte character length executes arbitrary code↗2026-02-12

▶