Bugsalert.com
Security News about Viruses, Spyware,
Trojans, Malware, XSS attacks.
Home | Recent | Sitemap

CVE-2009-3108 (altiris_deployment_solution)
BugsAlert Home > CVE-2009-3108 (altiris_deployment_solution)
 
 

The Aclient GUI in Symantec Altiris Deployment Solution 6.9.x before 6.9 SP3 Build 430 installs a client executable with insecure permissions (Everyone:Full Control), which allows local users to gain privileges by replacing the executable with a Trojan horse program.




Original Source: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-3108

Learn more about CVE-2009-3108 (altiris_deployment_solution)
 
Tags: cve-2009-3108 altiris deployment solution

Related Items
      VUPEN - ActivePerl Compress Modules Two Off-by-One Vulnerabilities

      Falcon Series One File Inclusion and Cross Site Scripting Vulnerabilities

      curl doesn't correct proxy authentication header

      Build A Niche Store "q" Cross-Site Scripting

      VUPEN - SuSE Security Update Fixes Firefox Code Execution Vulnerabilities

      Mandriva Security Update Fixes Pdftohtml Code Execution Vulnerabilities

      CVE-2009-0079 (windows_server_2003, windows_xp)

 
© 2007-2010 BugsAlert.com Original template by Arcsin Hosted By 1and1


Pixel