Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
altiris vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2007-3874
Directory traversal vulnerability in the tftp/mftp daemon in the PXE server component (pxemtftp.exe) in Symantec Altiris Deployment Solution 6.x prior to 6.8.380.0 allows remote malicious users to read arbitrary files via unspecified vectors.
Altiris Deployment Solution 6.0
Altiris Deployment Solution 6.8
NA
CVE-2012-0293
Multiple SQL injection vulnerabilities in Symantec Altiris WISE Package Studio prior to 8.0MR1 allow remote malicious users to execute arbitrary SQL commands via unspecified vectors.
Symantec Altiris Wise Package Studio 7.0
Symantec Altiris Wise Package Studio
Symantec Altiris Wise Package Studio 7
NA
CVE-2008-2291
axengine.exe in Symantec Altiris Deployment Solution 6.8.x and 6.9.x prior to 6.9.176 generates credentials with a fixed salt or without any salt, which makes it easier for remote malicious users to guess encrypted domain credentials.
Symantec Altiris Deployment Solution
Symantec Altiris Deployment Solution 6.8
7.8
CVSSv3
CVE-2008-6828
Symantec Altiris Deployment Solution 6.x prior to 6.9.355 SP1 stores the Application Identity Account password in memory in cleartext, which allows local users to gain privileges and modify clients of the Deployment Solution Server.
Symantec Altiris Deployment Solution 6.9.355
Symantec Altiris Deployment Solution
7.8
CVSSv3
CVE-2008-6827
The ListView control in the Client GUI (AClient.exe) in Symantec Altiris Deployment Solution 6.x prior to 6.9.355 SP1 allows local users to gain SYSTEM privileges and execute arbitrary commands via a "Shatter" style attack on the "command prompt" hidden GUI bu...
Symantec Altiris Deployment Solution 6.9.355
Symantec Altiris Deployment Solution
1 Github repository
NA
CVE-2007-5838
Aclient in Symantec Altiris Deployment Solution 6.x prior to 6.8.380.0 allows local users to gain local System privileges via the "Enable key-based authentication to Deployment server" browser option, a different issue than CVE-2007-4380.
Symantec Altiris Deployment Solution 6
Symantec Altiris Deployment Solution 6.8
NA
CVE-2008-2288
Symantec Altiris Deployment Solution 6.8.x and 6.9.x prior to 6.9.176 has insufficient access control for deletion and modification of registry keys, which allows local users to cause a denial of service or obtain sensitive information.
Symantec Altiris Deployment Solution 6.8
Symantec Altiris Deployment Solution 6.9
NA
CVE-2008-2287
Symantec Altiris Deployment Solution 6.8.x and 6.9.x prior to 6.9.176 does not properly protect the install directory, which might allow local users to gain privileges by replacing an application component with a Trojan horse.
Symantec Altiris Deployment Solution 6.8
Symantec Altiris Deployment Solution 6.9
NA
CVE-2008-2290
Unspecified vulnerability in the Agent user interface in Symantec Altiris Deployment Solution 6.8.x and 6.9.x prior to 6.9.176 allows local users to gain privileges via unknown attack vectors.
Symantec Altiris Deployment Solution 6.8
Symantec Altiris Deployment Solution 6.9
NA
CVE-2008-2286
SQL injection vulnerability in axengine.exe in Symantec Altiris Deployment Solution 6.8.x and 6.9.x prior to 6.9.176 allows remote malicious users to execute arbitrary SQL commands via unspecified string fields in a notification packet.
Symantec Altiris Deployment Solution 6.9
Symantec Altiris Deployment Solution 6.8
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-29895
blind SQL injection
CVE-2024-5064
CVE-2023-52677
CVE-2023-52682
CVE-2024-30051
CVE-2024-35849
remote attackers
remote
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
NEXT »