Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2007-5838

Overview

Vulnerability Score 7.2 7.2
CVE Id CVE-2007-5838
Last Modified 07 Mar 2011 10:01:23
Published 06 Nov 2007 02:46:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2007-5838

Summary

Aclient in Symantec Altiris Deployment Solution 6.x before 6.8.380.0 allows local users to gain local System privileges via the "Enable key-based authentication to Deployment server" browser option, a different issue than CVE-2007-4380.

Vulnerable Systems

Application

  • Symantec Altiris Deployment Solution 6

  • Symantec Altiris Deployment Solution 6.8


References

CONFIRM - http://www.symantec.com/avcenter/security/Content/2007.10.31a.html

BID - 26265

SECUNIA - 27412

XF - symantec-altiris-browser-priv-escalation(38180)

VUPEN - ADV-2007-3673

SECTRACK - 1018876

MISC - http://www.irmplc.com/index.php/152-Advisory-022

MISC - http://www.irmplc.com/index.php/111-Vendor-Alerts


Last Updated: 27 May 2016 10:46:18