Buffer Overflow Vulnerability in SQLAnywhere Affecting Symantec Ghost
CVE-2006-1286

Currently unrated

Key Information:

Vendor: Symantec
Status: Ghost Solutions Suite; Norton Ghost
Vendor: CVE Published:; 19 March 2006

Summary

A buffer overflow vulnerability in the login dialog of dbisqlc.exe within SQLAnywhere, as utilized by Symantec Ghost versions 8.0 and 8.2, may permit local users to exploit this flaw and access sensitive database information. This vulnerability poses a significant risk to data confidentiality, making it crucial for organizations to secure their environments by applying necessary mitigations.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/25089

vdb-entryx_refsource_XF

http://securitytracker.com/id?1015733

vdb-entryx_refsource_SECTRACK

http://secunia.com/advisories/19171

third-party-advisoryx_refsource_SECUNIA

Timeline

Vulnerability published
Mar 19, 2006
Vulnerability Reserved
Mar 19, 2006