Executive Summary
| Informations | |||
|---|---|---|---|
| Name | CVE-2009-3110 | First vendor Publication | 2009-09-08 |
| Vendor | Cve | Last vendor Modification | 2013-02-07 |
Security-Database Scoring CVSS v3
| Cvss vector : N/A | |||
|---|---|---|---|
| Overall CVSS Score | NA | ||
| Base Score | NA | Environmental Score | NA |
| impact SubScore | NA | Temporal Score | NA |
| Exploitabality Sub Score | NA | ||
| Calculate full CVSS 3.0 Vectors scores | |||
Security-Database Scoring CVSS v2
| Cvss vector : (AV:N/AC:M/Au:N/C:P/I:N/A:P) | |||
|---|---|---|---|
| Cvss Base Score | 5.8 | Attack Range | Network |
| Cvss Impact Score | 4.9 | Attack Complexity | Medium |
| Cvss Expoit Score | 8.6 | Authentication | None Required |
| Calculate full CVSS 2.0 Vectors scores | |||
Detail
| Race condition in the file transfer functionality in Symantec Altiris Deployment Solution 6.9.x before 6.9 SP3 Build 430 allows remote attackers to read sensitive files and prevent client updates by connecting to the file transfer port before the expected client does. |
Original Source
| Url : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3110 |
CWE : Common Weakness Enumeration
| % | Id | Name |
|---|---|---|
| 100 % | CWE-362 | Race Condition |
CPE : Common Platform Enumeration
Open Source Vulnerability Database (OSVDB)
| Id | Description |
|---|---|
| 57461 | Symantec Altiris Deployment Solution File Transfer Authentication Bypass |
Nessus® Vulnerability Scanner
| Date | Description |
|---|---|
| 2010-01-08 | Name : The remote Windows host has a deployment server that is affected by multiple ... File : altiris_deployment_solution_server_6_9_430.nasl - Type : ACT_GATHER_INFO |
Sources (Detail)
Alert History
| Date | Informations |
|---|---|
| 2021-05-04 12:10:10 |
|
| 2021-04-22 01:10:35 |
|
| 2020-05-23 00:24:18 |
|
| 2016-04-26 19:05:41 |
|
| 2014-02-17 10:51:34 |
|
| 2013-05-10 23:57:00 |
|
| 2013-02-07 13:19:38 |
|
