Published: 16/05/2005 Updated: 05/09/2008

CVSS v2 Base Score: 4.6 | Impact Score: 6.4 | Exploitability Score: 3.9

VMScore: 465

Vector: AV:L/AC:L/Au:N/C:P/I:P/A:P

The Altiris Client Service for Windows (ACLIENT.EXE) 6.0.88 allows local users to disable password protection and access the administrative interface by finding and showing the "Altiris Client Service" hidden window, disabling the password protection, disabling the "Hide client tray icon box" option, then opening the AClient tray icon and using the View Log File option, a different vulnerability than CVE-2004-2070.

Vulnerable Product	Search on Vulmon	Subscribe to Product
altiris deployment solution 5.6.181
altiris deployment solution 5.6
altiris deployment solution 6.0
altiris client service 6.0.88

source: wwwsecurityfocuscom/bid/11709/info Altiris Deployment Solution Client allows a user to activate the client interface by easily launching the software from an icon in the Windows system tray It is reported that a local user may exploit the client interface to escalate privileges It should be noted that although this vulnerabilit ...

NVD-CWE-Other http://archives.neohapsis.com/archives/fulldisclosure/2005-04/0614.html http://www.osvdb.org/15897 http://secunia.com/advisories/15159 https://nvd.nist.gov https://www.exploit-db.com/exploits/24754/

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2005-1590

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect