Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Altiris_deployment_solution
(Symantec)Repositories |
Unknown: This might be proprietary software. |
#Vulnerabilities | 24 |
Date | Id | Summary | Products | Score | Patch | Annotated |
---|---|---|---|---|---|---|
2009-11-25 | CVE-2009-3033 | Buffer overflow in the RunCmd method in the Altiris eXpress NS Console Utilities ActiveX control in AeXNSConsoleUtilities.dll in the web console in Symantec Altiris Deployment Solution 6.9.x, Altiris Notification Server 6.0.x, and Management Platform 7.0.x allows remote attackers to execute arbitrary code via a long string in the second argument. | Altiris_deployment_solution, Altiris_management_platform, Altiris_notification_server | N/A | ||
2009-11-03 | CVE-2009-3031 | Stack-based buffer overflow in the BrowseAndSaveFile method in the Altiris eXpress NS ConsoleUtilities ActiveX control 6.0.0.1846 in AeXNSConsoleUtilities.dll in Symantec Altiris Notification Server (NS) 6.0 before R12, Deployment Server 6.8 and 6.9 in Symantec Altiris Deployment Solution 6.9 SP3, and Symantec Management Platform (SMP) 7.0 before SP3 allows remote attackers to execute arbitrary code via a long string in the second argument. | Altiris_deployment_solution, Altiris_management_platform, Altiris_notification_server | N/A | ||
2011-03-07 | CVE-2009-3028 | The Altiris eXpress NS SC Download ActiveX control in AeXNSPkgDLLib.dll, as used in Symantec Altiris Deployment Solution 6.9.x, Notification Server 6.0.x, and Symantec Management Platform 7.0.x exposes an unsafe method, which allows remote attackers to force the download of arbitrary files and possibly execute arbitrary code via the DownloadAndInstall method. | Altiris_deployment_solution, Altiris_notification_server, Management_platform | N/A | ||
2009-03-18 | CVE-2008-4564 | Stack-based buffer overflow in wp6sr.dll in the Autonomy KeyView SDK 10.4 and earlier, as used in IBM Lotus Notes, Symantec Mail Security (SMS) products, Symantec BrightMail Appliance products, and Symantec Data Loss Prevention (DLP) products, allows remote attackers to execute arbitrary code via a crafted Word Perfect Document (WPD) file. | Keyview_export_sdk, Keyview_filter_sdk, Keyview_viewer_sdk, Lotus_notes, Altiris_deployment_solution, Brightmail, Data_loss_prevention_detection_servers, Data_loss_prevention_endpoint_agents, Enforce, Mail_security | N/A | ||
2008-05-18 | CVE-2008-2290 | Unspecified vulnerability in the Agent user interface in Symantec Altiris Deployment Solution 6.8.x and 6.9.x before 6.9.176 allows local users to gain privileges via unknown attack vectors. | Altiris_deployment_solution | N/A | ||
2008-05-18 | CVE-2008-2289 | Unspecified vulnerability in a tooltip element in Symantec Altiris Deployment Solution 6.8.x and 6.9.x before 6.9.176 allows local users to gain privileges via unknown attack vectors. | Altiris_deployment_solution | N/A | ||
2008-05-18 | CVE-2008-2288 | Symantec Altiris Deployment Solution 6.8.x and 6.9.x before 6.9.176 has insufficient access control for deletion and modification of registry keys, which allows local users to cause a denial of service or obtain sensitive information. | Altiris_deployment_solution | N/A | ||
2008-05-18 | CVE-2008-2287 | Symantec Altiris Deployment Solution 6.8.x and 6.9.x before 6.9.176 does not properly protect the install directory, which might allow local users to gain privileges by replacing an application component with a Trojan horse. | Altiris_deployment_solution | N/A | ||
2008-05-18 | CVE-2008-2286 | SQL injection vulnerability in axengine.exe in Symantec Altiris Deployment Solution 6.8.x and 6.9.x before 6.9.176 allows remote attackers to execute arbitrary SQL commands via unspecified string fields in a notification packet. | Altiris_deployment_solution | N/A | ||
2008-04-11 | CVE-2008-1754 | Symantec Altiris Deployment Solution before 6.9.164 stores the Deployment Solution Agent (aka AClient) password in cleartext in memory, which allows local users to obtain sensitive information by dumping the AClient.exe process memory. | Altiris_deployment_solution | N/A |