Symantec Altiris eXpress NS SC Download ActiveX Control Arbitrary File Download Vulnerability

Bugtraq ID: 36346
Class: Input Validation Error
CVE: CVE-2009-3028
Remote: Yes
Local: No
Published: Sep 10 2009 12:00AM
Updated: Oct 09 2009 08:29PM
Credit: Reported in a Metasploit plugin
Vulnerable: Symantec Management Platform 7.0 SP1
Symantec Management Platform 7.0
Symantec Deployment Solution 6.9 SP3
Symantec Altiris Notification Server 6.0 SP3 R7
Symantec Altiris Notification Server 6.0 SP3
Symantec Altiris Notification Server 6.0 SP2
Symantec Altiris Notification Server 6.0 SP1
Symantec Altiris Notification Server 6.0
Symantec Altiris eXpress NS SC Download ActiveX Control 6.0.0.1418
Symantec Altiris Deployment Solution 6.9.355 SP1
Symantec Altiris Deployment Solution 6.9.355
Symantec Altiris Deployment Solution 6.9.176
Symantec Altiris Deployment Solution 6.9.164
Symantec Altiris Deployment Solution 6.9 SP3 Build 430
Symantec Altiris Deployment Solution 6.9 SP1
Symantec Altiris Deployment Solution 6.9
Not Vulnerable:


 

Privacy Statement
Copyright 2010, SecurityFocus