Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
altiris vulnerabilities and exploits
(subscribe to this query)
641
VMScore
CVE-2004-1624
Carbon Copy 6.0.5257 does not drop system privileges when opening external programs through the help topic interface, which allows local users to gain privileges via (1) the help topic interface in CCW32.exe, which launches Notepad, or (2) the help button in the Carbon Copy Sched...
Altiris Carbon Copy 6.0
Altiris Carbon Copy 5.0
605
VMScore
CVE-2012-0293
Multiple SQL injection vulnerabilities in Symantec Altiris WISE Package Studio prior to 8.0MR1 allow remote malicious users to execute arbitrary SQL commands via unspecified vectors.
Symantec Altiris Wise Package Studio 7.0
Symantec Altiris Wise Package Studio
Symantec Altiris Wise Package Studio 7
668
VMScore
CVE-2008-2291
axengine.exe in Symantec Altiris Deployment Solution 6.8.x and 6.9.x prior to 6.9.176 generates credentials with a fixed salt or without any salt, which makes it easier for remote malicious users to guess encrypted domain credentials.
Symantec Altiris Deployment Solution
Symantec Altiris Deployment Solution 6.8
605
VMScore
CVE-2008-6827
The ListView control in the Client GUI (AClient.exe) in Symantec Altiris Deployment Solution 6.x prior to 6.9.355 SP1 allows local users to gain SYSTEM privileges and execute arbitrary commands via a "Shatter" style attack on the "command prompt" hidden GUI bu...
Symantec Altiris Deployment Solution 6.9.355
Symantec Altiris Deployment Solution
1 Github repository
383
VMScore
CVE-2008-6828
Symantec Altiris Deployment Solution 6.x prior to 6.9.355 SP1 stores the Application Identity Account password in memory in cleartext, which allows local users to gain privileges and modify clients of the Deployment Solution Server.
Symantec Altiris Deployment Solution 6.9.355
Symantec Altiris Deployment Solution
755
VMScore
CVE-2008-2286
SQL injection vulnerability in axengine.exe in Symantec Altiris Deployment Solution 6.8.x and 6.9.x prior to 6.9.176 allows remote malicious users to execute arbitrary SQL commands via unspecified string fields in a notification packet.
Symantec Altiris Deployment Solution 6.9
Symantec Altiris Deployment Solution 6.8
1 EDB exploit
641
VMScore
CVE-2008-2287
Symantec Altiris Deployment Solution 6.8.x and 6.9.x prior to 6.9.176 does not properly protect the install directory, which might allow local users to gain privileges by replacing an application component with a Trojan horse.
Symantec Altiris Deployment Solution 6.8
Symantec Altiris Deployment Solution 6.9
320
VMScore
CVE-2008-2288
Symantec Altiris Deployment Solution 6.8.x and 6.9.x prior to 6.9.176 has insufficient access control for deletion and modification of registry keys, which allows local users to cause a denial of service or obtain sensitive information.
Symantec Altiris Deployment Solution 6.8
Symantec Altiris Deployment Solution 6.9
641
VMScore
CVE-2008-2290
Unspecified vulnerability in the Agent user interface in Symantec Altiris Deployment Solution 6.8.x and 6.9.x prior to 6.9.176 allows local users to gain privileges via unknown attack vectors.
Symantec Altiris Deployment Solution 6.8
Symantec Altiris Deployment Solution 6.9
641
VMScore
CVE-2007-5838
Aclient in Symantec Altiris Deployment Solution 6.x prior to 6.8.380.0 allows local users to gain local System privileges via the "Enable key-based authentication to Deployment server" browser option, a different issue than CVE-2007-4380.
Symantec Altiris Deployment Solution 6
Symantec Altiris Deployment Solution 6.8
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
validation
CVE-2012-1823
malicious code
CVE-2024-5770
CVE-2023-45866
CVE-2024-35687
local users
CVE-2024-31246
CVE-2024-35730
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
NEXT »