Local Privilege Escalation in Symantec Altiris Deployment Solution
CVE-2007-5838

Currently unrated

Key Information:

Vendor: Symantec
Status: Altiris Deployment Solution
Vendor: CVE Published:; 6 November 2007

Summary

A local privilege escalation vulnerability exists in Symantec Altiris Deployment Solution 6.x versions prior to 6.8.380.0. This flaw arises due to the browser option "Enable key-based authentication to Deployment server", allowing local users to elevate their privileges to that of the system. This vulnerability is distinct from other identified issues and poses a significant risk to affected installations.

References

http://www.securitytracker.com/id?1018876

vdb-entryx_refsource_SECTRACK

http://www.irmplc.com/index.php/111-Vendor-Alerts

x_refsource_MISC

http://www.vupen.com/english/advisories/2007/3673

vdb-entryx_refsource_VUPEN

Timeline

Vulnerability published
Nov 6, 2007
Vulnerability Reserved
Nov 6, 2007