CVE-2006-1286

Description

Buffer overflow in the login dialog in dbisqlc.exe in SQLAnywhere for Symantec Ghost 8.0 and 8.2, as used in Symantec Ghost Solutions Suite (SGSS) 1.0, might allow local users to read certain sensitive information from the database.

Affected products

• Symantec / ghost_solutions_suite1.0 – 1.0
• Symantec / norton_ghost8.0 – 8.0
• Symantec / norton_ghost8.2 – 8.2

References

• MISChttps://exchange.xforce.ibmcloud.com/vulnerabilities/25089
• MISChttp://securitytracker.com/id?1015733
• VENDOR_ADVISORYhttp://secunia.com/advisories/19171
• MISChttp://securityresponse.symantec.com/avcenter/security/Content/2006.03.07.html
• VENDOR_ADVISORYhttp://www.vupen.com/english/advisories/2006/0870