SecurityTracker.com
    Home    |    View Topics    |    Search    |    Contact Us    |   

SecurityTracker
Archives


 


Category:   Application (Generic)  >   Symantec Ghost Vendors:   Symantec
Symantec Ghost Underlying Database Bugs May Let Local Users Access the Database
SecurityTracker Alert ID:  1015733
SecurityTracker URL:  http://securitytracker.com/id/1015733
CVE Reference:   CVE-2006-1284, CVE-2006-1285, CVE-2006-1286   (Links to External Site)
Updated:  Mar 24 2006
Original Entry Date:  Mar 7 2006
Impact:   User access via local system
Fix Available:  Yes  Vendor Confirmed:  Yes  
Version(s): 8.0, 8.2; Symantec Ghost Solution Suite 1.0
Description:   A vulnerability was reported in Symantec Ghost and Symantec Ghose Solution Suite. A local user can obtain elevated privileges.

The vulnerabilities reside in the Sybase SQLAnywhere database that is installed with Symantec Ghost and the Central Management Console in Symantec Ghost Solutions Suite.

The system uses a default administrator login and password pair during installation. A local user can use these default values to modify or delete stored administrative tasks.

A local user can exploit a memory mapping permission vulnerability to gain access to information stored in the database or modify stored information.

A local user can trigger a buffer overflow in the login dialog of 'dbisqlc.exe', which is installed by default but not used by default. A local user can exploit this to gain access to information in the database.

Ollie Whitehouse from Symantec discovered these vulnerabilities.

Impact:   A local user can obtain administrative access to the database.
Solution:   The vendor has issued a fixed version (8.3) of Symantec Ghost and a fixed version (1.1) of Symantec Ghost Solutions Suite.

The vendor's advisory is available at:

http://securityresponse.symantec.com/avcenter/security/Content/2006.03.07.html

Vendor URL:  securityresponse.symantec.com/avcenter/security/Content/2006.03.07.html (Links to External Site)
Cause:   Access control error, Boundary error
Underlying OS:  Windows (Any)

Message History:   None.


 Source Message Contents



[Original Message Not Available for Viewing]


Go to the Top of This SecurityTracker Archive Page





Home   |    View Topics   |    Search   |    Contact Us

This web site uses cookies for web analytics. Learn More

Copyright 2019, SecurityGlobal.net LLC