Recent Vulnerabilities Research Posts Trends Blog About Contact

Published: 10/10/2013 Updated: 10/10/2013

CVSS v2 Base Score: 4.6 | Impact Score: 6.4 | Exploitability Score: 3.9

VMScore: 409

Vector: AV:L/AC:L/Au:N/C:P/I:P/A:P

The agent and task-agent components in Symantec Management Platform 7.0 and 7.1 prior to 7.1 SP2 Mp1.1v7 rollup, as used in certain Altiris products, use the same registry-entry encryption key across different customers' installations, which makes it easier for local users to obtain sensitive information about package-server access, or cause a denial of service, by leveraging knowledge of this key.

Vulnerable Product	Search on Vulmon	Subscribe to Product
symantec management platform 7.1
symantec management platform 7.0

CWE-200 http://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&year=&suid=20131008_00 http://www.securityfocus.com/bid/62757 https://nvd.nist.gov

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2013-5008

Vulnerability Summary

References

Vulmon Search

About

Products

Connect