ID CVE-2009-3179
Summary Multiple unspecified vulnerabilities in Symantec Altiris Deployment Solution 6.9 might allow remote attackers to execute arbitrary code via unknown client-side attack vectors, as demonstrated by a certain module in VulnDisco Pack Professional 7.17, as identified by (1) "Symantec Altiris Deployment Solution 6.9 exploit, (2) "Symantec Altiris Deployment Solution 6.9 exploit (II)," and (3) "Symantec Altiris Deployment Solution 6.9 exploit (III)." NOTE: as of 20090909, this disclosure has no actionable information. However, because the VulnDisco Pack author is a reliable researcher, the issue is being assigned a CVE identifier for tracking purposes.
References
Vulnerable Configurations
  • cpe:2.3:a:symantec:altiris_deployment_solution:6.9:*:*:*:*:*:*:*
    cpe:2.3:a:symantec:altiris_deployment_solution:6.9:*:*:*:*:*:*:*
CVSS
Base: 10.0 (as of 15-09-2009 - 04:00)
Impact:
Exploitability:
CWE NVD-CWE-noinfo
CAPEC
Access
VectorComplexityAuthentication
NETWORK LOW NONE
Impact
ConfidentialityIntegrityAvailability
COMPLETE COMPLETE COMPLETE
cvss-vector via4 AV:N/AC:L/Au:N/C:C/I:C/A:C
refmap via4
bid 36247
misc http://intevydis.com/vd-list.shtml
secunia 36587
Last major update 15-09-2009 - 04:00
Published 11-09-2009 - 20:30
Last modified 15-09-2009 - 04:00
Back to Top