This CPE summary could be partial or incomplete. Please contact us for a detailed listing.

Summary

Detail
Vendor Symantec First view 2008-05-18
Product Altiris Deployment Solution Last view 2018-02-19
Version 6.9 Type Application
Update sp1  
Edition *  
Language *  
Sofware Edition *  
Target Software *  
Target Hardware *  
Other *  
 
CPE Product cpe:2.3:a:symantec:altiris_deployment_solution

Activity : Overall

Related : CVE

  Date Alert Description
6.5 2018-02-19 CVE-2010-0109

DBManager in Symantec Altiris Deployment Solution 6.9.x before DS 6.9 SP4 allows remote attackers to cause a denial of service via a crafted request.

6.8 2011-03-07 CVE-2009-3028

The Altiris eXpress NS SC Download ActiveX control in AeXNSPkgDLLib.dll, as used in Symantec Altiris Deployment Solution 6.9.x, Notification Server 6.0.x, and Symantec Management Platform 7.0.x exposes an unsafe method, which allows remote attackers to force the download of arbitrary files and possibly execute arbitrary code via the DownloadAndInstall method.

9.3 2009-11-25 CVE-2009-3033

Buffer overflow in the RunCmd method in the Altiris eXpress NS Console Utilities ActiveX control in AeXNSConsoleUtilities.dll in the web console in Symantec Altiris Deployment Solution 6.9.x, Altiris Notification Server 6.0.x, and Management Platform 7.0.x allows remote attackers to execute arbitrary code via a long string in the second argument.

9.3 2009-11-03 CVE-2009-3031

Stack-based buffer overflow in the BrowseAndSaveFile method in the Altiris eXpress NS ConsoleUtilities ActiveX control 6.0.0.1846 in AeXNSConsoleUtilities.dll in Symantec Altiris Notification Server (NS) 6.0 before R12, Deployment Server 6.8 and 6.9 in Symantec Altiris Deployment Solution 6.9 SP3, and Symantec Management Platform (SMP) 7.0 before SP3 allows remote attackers to execute arbitrary code via a long string in the second argument.

5.8 2009-09-08 CVE-2009-3110

Race condition in the file transfer functionality in Symantec Altiris Deployment Solution 6.9.x before 6.9 SP3 Build 430 allows remote attackers to read sensitive files and prevent client updates by connecting to the file transfer port before the expected client does.

9.3 2009-09-08 CVE-2009-3109

Unspecified vulnerability in the AClient agent in Symantec Altiris Deployment Solution 6.9.x before 6.9 SP3 Build 430, when key-based authentication is being used between a deployment server and a client, allows remote attackers to bypass authentication and execute arbitrary commands as SYSTEM by spoofing the deployment server and sending "alternate commands" before the handshake is completed.

7.2 2009-09-08 CVE-2009-3108

The Aclient GUI in Symantec Altiris Deployment Solution 6.9.x before 6.9 SP3 Build 430 installs a client executable with insecure permissions (Everyone:Full Control), which allows local users to gain privileges by replacing the executable with a Trojan horse program.

4.8 2009-09-08 CVE-2009-3107

Symantec Altiris Deployment Solution 6.9.x before 6.9 SP3 Build 430 does not properly restrict access to the listening port for the DBManager service, which allows remote attackers to bypass authentication and modify tasks or the Altiris Database via a connection to this service.

4.3 2009-06-08 CVE-2008-6828

Symantec Altiris Deployment Solution 6.x before 6.9.355 SP1 stores the Application Identity Account password in memory in cleartext, which allows local users to gain privileges and modify clients of the Deployment Solution Server.

7.5 2008-05-18 CVE-2008-2291

axengine.exe in Symantec Altiris Deployment Solution 6.8.x and 6.9.x before 6.9.176 generates credentials with a fixed salt or without any salt, which makes it easier for remote attackers to guess encrypted domain credentials.

CWE : Common Weakness Enumeration

%idName
37% (3) CWE-119 Failure to Constrain Operations within the Bounds of a Memory Buffer
25% (2) CWE-264 Permissions, Privileges, and Access Controls
12% (1) CWE-362 Race Condition
12% (1) CWE-310 Cryptographic Issues
12% (1) CWE-255 Credentials Management

CAPEC : Common Attack Pattern Enumeration & Classification

id Name
CAPEC-22 Exploiting Trust in Client (aka Make the Client Invisible)
CAPEC-31 Accessing/Intercepting/Modifying HTTP Cookies
CAPEC-37 Lifting Data Embedded in Client Distributions
CAPEC-57 Utilizing REST's Trust in the System Resource to Register Man in the Middle
CAPEC-65 Passively Sniff and Capture Application Code Bound for Authorized Client
CAPEC-94 Man in the Middle Attack
CAPEC-114 Authentication Abuse
CAPEC-117 Data Interception Attacks
CAPEC-155 Screen Temporary Files for Sensitive Information
CAPEC-157 Sniffing Attacks
CAPEC-167 Lifting Sensitive Data from the Client
CAPEC-204 Lifting cached, sensitive data embedded in client distributions (thick or thin)
CAPEC-205 Lifting credential(s)/key material embedded in client distributions (thick or...
CAPEC-258 Passively Sniffing and Capturing Application Code Bound for an Authorized Cli...
CAPEC-259 Passively Sniffing and Capturing Application Code Bound for an Authorized Cli...
CAPEC-260 Passively Sniffing and Capturing Application Code Bound for an Authorized Cli...

SAINT Exploits

Description Link
Symantec Multiple Products AeXNSConsoleUtilities Buffer Overflow More info here
Symantec AeXNSConsoleUtilities RunCmd buffer overflow More info here

Open Source Vulnerability Database (OSVDB)

id Description
60496 Symantec Altiris ConsoleUtilities ActiveX (AeXNSConsoleUtilities.dll) RunCmd ...
59597 Symantec Altiris and Management Platform ConsoleUtilities ActiveX (AeXNSConso...
57893 Symantec Altiris eXpress NS SC Download Altiris.AeXNSPkgDL.1 ActiveX (AeXNSPk...
57461 Symantec Altiris Deployment Solution File Transfer Authentication Bypass
57460 Symantec Altiris Deployment Solution AClient Agent Handshake Race Condition R...
57459 Symantec Altiris Deployment Solution Aclient GUI Permission Weakness Local Pr...
57458 Symantec Altiris Deployment Solution DBManager Unspecified Authentication Bypass
54976 Symantec Altiris Deployment Solution Application Identity Account Cleartext P...
45314 Symantec Altiris Deployment Solution Weakly Encrypted Domain Credential Remot...

Snort® IPS/IDS

Date Description
2016-04-09 Symantec Altiris Deployment Solution ActiveX clsid access attempt
RuleID : 38151 - Type : BROWSER-PLUGINS - Revision : 2
2014-01-10 Symantec Altirix Deployment Solution AeXNSPkgDLLib.dll ActiveX function call ...
RuleID : 17095 - Type : WEB-ACTIVEX - Revision : 3
2014-01-10 Symantec Altirix Deployment Solution AeXNSPkgDLLib.dll ActiveX function call ...
RuleID : 17094 - Type : BROWSER-PLUGINS - Revision : 9
2014-01-10 Symantec Altirix Deployment Solution AeXNSPkgDLLib.dll ActiveX clsid unicode ...
RuleID : 17093 - Type : WEB-ACTIVEX - Revision : 3
2014-01-10 Symantec Altirix Deployment Solution AeXNSPkgDLLib.dll ActiveX clsid access
RuleID : 17092 - Type : BROWSER-PLUGINS - Revision : 9
2014-01-10 Symantec multiple products AeXNSConsoleUtilities RunCMD buffer overflow attempt
RuleID : 16787 - Type : FILE-OTHER - Revision : 12
2014-01-10 Symantec Altiris Deployment Solution ActiveX clsid access attempt
RuleID : 16587 - Type : BROWSER-PLUGINS - Revision : 11
2014-01-10 Symantec Altiris Deployment Solution ActiveX function call unicode access
RuleID : 16308 - Type : WEB-ACTIVEX - Revision : 4
2014-01-10 Symantec Altiris Deployment Solution ActiveX clsid access attempt
RuleID : 16307 - Type : BROWSER-PLUGINS - Revision : 10
2014-01-10 Symantec Altiris Deployment Solution ActiveX clsid unicode access
RuleID : 16306 - Type : WEB-ACTIVEX - Revision : 4
2014-01-10 Symantec Altiris Deployment Solution ActiveX clsid access attempt
RuleID : 16305 - Type : BROWSER-PLUGINS - Revision : 10

Nessus® Vulnerability Scanner

id Description
2010-04-21 Name: The remote Windows host has a deployment server that is affected by a denial ...
File: altiris_deployment_solution_server_6_9_sp4.nasl - Type: ACT_GATHER_INFO
2010-01-08 Name: The remote Windows host has a deployment server that is affected by multiple ...
File: altiris_deployment_solution_server_6_9_430.nasl - Type: ACT_GATHER_INFO
2009-12-02 Name: The remote Windows host has an ActiveX control with a buffer overflow vulnera...
File: altiris_aexnsconsoleutilities_runcmd_activex.nasl - Type: ACT_GATHER_INFO
2009-11-04 Name: The remote Windows host has an ActiveX control with a buffer overflow vulnera...
File: altiris_aexnsconsoleutilities_activex.nasl - Type: ACT_GATHER_INFO
2009-09-23 Name: The remote Windows host has an ActiveX control that allows execution of arbit...
File: altiris_aexnspkgdllib_activex_download.nasl - Type: ACT_GATHER_INFO
2009-08-31 Name: The remote Windows host has a program that is affected by a security bypass v...
File: altiris_ds_dbmanager_security_bypass.nasl - Type: ACT_GATHER_INFO
2008-11-25 Name: The remote Windows host has a program that is affected by a password disclosu...
File: altiris_deployment_solution_server_6_9_355.nasl - Type: ACT_GATHER_INFO
2008-05-15 Name: The remote Windows host has a program that is affected by multiple vulnerabil...
File: altiris_deployment_server_6_9_176.nasl - Type: ACT_GATHER_INFO