Access Control Vulnerability in Symantec Altiris Deployment Solution
CVE-2009-3107

Currently unrated

Key Information:

Vendor: Symantec
Status: Altiris Deployment Solution
Vendor: CVE Published:; 8 September 2009

Summary

The Symantec Altiris Deployment Solution contains a vulnerability that fails to properly restrict access to the listening port for the DBManager service. This flaw enables remote attackers to bypass authentication protocols, potentially allowing them to alter tasks and access the Altiris Database. Such an exploit could compromise the integrity of the system and its data, emphasizing the necessity of applying security updates to mitigate these risks.

References

http://secunia.com/advisories/36502

third-party-advisoryx_refsource_SECUNIA

http://www.securityfocus.com/bid/36110

vdb-entryx_refsource_BID

http://www.symantec.com/security_response/securityupdates...

x_refsource_CONFIRM

Timeline

Vulnerability published
Sep 8, 2009
Vulnerability Reserved
Sep 8, 2009