Total
24 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2009-3109 | 1 Symantec | 1 Altiris Deployment Solution | 2023-12-10 | 9.3 HIGH | N/A |
Unspecified vulnerability in the AClient agent in Symantec Altiris Deployment Solution 6.9.x before 6.9 SP3 Build 430, when key-based authentication is being used between a deployment server and a client, allows remote attackers to bypass authentication and execute arbitrary commands as SYSTEM by spoofing the deployment server and sending "alternate commands" before the handshake is completed. | |||||
CVE-2007-5838 | 1 Symantec | 1 Altiris Deployment Solution | 2023-12-10 | 7.2 HIGH | N/A |
Aclient in Symantec Altiris Deployment Solution 6.x before 6.8.380.0 allows local users to gain local System privileges via the "Enable key-based authentication to Deployment server" browser option, a different issue than CVE-2007-4380. | |||||
CVE-2007-4380 | 1 Symantec | 1 Altiris Deployment Solution | 2023-12-10 | 7.2 HIGH | N/A |
Aclient in Symantec Altiris Deployment Solution 6 before 6.8 SP2 (6.8.378) allows local users to gain local System privileges via the Log File Viewer. | |||||
CVE-2007-5555 | 1 Symantec | 1 Altiris Deployment Solution | 2023-12-10 | 6.9 MEDIUM | N/A |
Unspecified vulnerability in Symantec Altiris Deployment Solution allows attackers to obtain authentication credentials via unknown vectors, aka "Authentication Credentials Information Leakage in Altiris Deployment Solution." NOTE: this description is based on a vague pre-advisory with no actionable information. However, since it is from a well-known researcher, it is being assigned a CVE identifier for tracking purposes. |