Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-1473

Overview

Vulnerability Score 7.2 7.2
CVE Id CVE-2008-1473
Last Modified 25 Jul 2011 12:00:00
Published 24 Mar 2008 06:44:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2008-1473

Summary

The Altiris Client Service (AClient.exe) in Symantec Altiris Deployment Solution 6.8.x before 6.9.164 allows local users to gain privileges via a "Shatter" style attack.

Vulnerable Systems

Application

  • Symantec Altiris Deployment Solution 6.8

  • Symantec Altiris Deployment Solution 6.8.282

  • Symantec Altiris Deployment Solution 6.8.378

  • Symantec Altiris Deployment Solution 6.8.380

  • Symantec Altiris Deployment Solution 6.8.380.0


References

CONFIRM - http://securityresponse.symantec.com/avcenter/security/Content/2008.03.10.html

XF - symantec-altiris-aclient-priv-escalation(41100)

VUPEN - ADV-2008-0843

SECTRACK - 1019569

BID - 28110

SECUNIA - 29319


Last Updated: 27 May 2016 10:47:08