CVE-2009-3107

Currently unrated

Key Information:

Vendor: Symantec
Status: Altiris Deployment Solution
Vendor: CVE Published:; 8 September 2009

Summary

Symantec Altiris Deployment Solution 6.9.x before 6.9 SP3 Build 430 does not properly restrict access to the listening port for the DBManager service, which allows remote attackers to bypass authentication and modify tasks or the Altiris Database via a connection to this service.

References

http://secunia.com/advisories/36502

third-party-advisoryx_refsource_SECUNIA

http://www.securityfocus.com/bid/36110

vdb-entryx_refsource_BID

http://www.symantec.com/security_response/securityupdates...

x_refsource_CONFIRM

Timeline

Vulnerability published
Sep 8, 2009
Vulnerability Reserved
Sep 8, 2009