Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
altiris deployment solution vulnerabilities and exploits
(subscribe to this query)
7.8
CVSSv3
CVE-2008-6828
Symantec Altiris Deployment Solution 6.x prior to 6.9.355 SP1 stores the Application Identity Account password in memory in cleartext, which allows local users to gain privileges and modify clients of the Deployment Solution Server.
Symantec Altiris Deployment Solution 6.9.355
Symantec Altiris Deployment Solution
NA
CVE-2008-2291
axengine.exe in Symantec Altiris Deployment Solution 6.8.x and 6.9.x prior to 6.9.176 generates credentials with a fixed salt or without any salt, which makes it easier for remote malicious users to guess encrypted domain credentials.
Symantec Altiris Deployment Solution
Symantec Altiris Deployment Solution 6.8
NA
CVE-2007-5838
Aclient in Symantec Altiris Deployment Solution 6.x prior to 6.8.380.0 allows local users to gain local System privileges via the "Enable key-based authentication to Deployment server" browser option, a different issue than CVE-2007-4380.
Symantec Altiris Deployment Solution 6
Symantec Altiris Deployment Solution 6.8
NA
CVE-2008-2287
Symantec Altiris Deployment Solution 6.8.x and 6.9.x prior to 6.9.176 does not properly protect the install directory, which might allow local users to gain privileges by replacing an application component with a Trojan horse.
Symantec Altiris Deployment Solution 6.8
Symantec Altiris Deployment Solution 6.9
NA
CVE-2008-2286
SQL injection vulnerability in axengine.exe in Symantec Altiris Deployment Solution 6.8.x and 6.9.x prior to 6.9.176 allows remote malicious users to execute arbitrary SQL commands via unspecified string fields in a notification packet.
Symantec Altiris Deployment Solution 6.9
Symantec Altiris Deployment Solution 6.8
1 EDB exploit
NA
CVE-2008-2288
Symantec Altiris Deployment Solution 6.8.x and 6.9.x prior to 6.9.176 has insufficient access control for deletion and modification of registry keys, which allows local users to cause a denial of service or obtain sensitive information.
Symantec Altiris Deployment Solution 6.8
Symantec Altiris Deployment Solution 6.9
NA
CVE-2008-2290
Unspecified vulnerability in the Agent user interface in Symantec Altiris Deployment Solution 6.8.x and 6.9.x prior to 6.9.176 allows local users to gain privileges via unknown attack vectors.
Symantec Altiris Deployment Solution 6.8
Symantec Altiris Deployment Solution 6.9
NA
CVE-2007-4380
Aclient in Symantec Altiris Deployment Solution 6 prior to 6.8 SP2 (6.8.378) allows local users to gain local System privileges via the Log File Viewer.
Symantec Altiris Deployment Solution
NA
CVE-2009-3107
Symantec Altiris Deployment Solution 6.9.x prior to 6.9 SP3 Build 430 does not properly restrict access to the listening port for the DBManager service, which allows remote malicious users to bypass authentication and modify tasks or the Altiris Database via a connection to this ...
Symantec Altiris Deployment Solution 6.9
NA
CVE-2009-3178
Unspecified vulnerability in mm.exe in Symantec Altiris Deployment Solution 6.9 allows remote malicious users to cause a denial of service via unknown attack vectors, as demonstrated by a certain module in VulnDisco Pack Professional 7.18, "Symantec Altiris Deployment Soluti...
Symantec Altiris Deployment Solution 6.9
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
firmware
CVE-2023-52866
CVE-2024-4367
CVE-2024-1721
CVE-2023-34992
XML injection
CVE-2023-52817
SQL
CVE-2023-52855
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
NEXT »