Race Condition Vulnerability in Symantec Altiris Deployment Solution
CVE-2009-3110

Currently unrated

Key Information:

Vendor: Symantec
Status: Altiris Deployment Solution
Vendor: CVE Published:; 8 September 2009

Summary

A race condition exists in the file transfer feature of Symantec Altiris Deployment Solution 6.9.x versions prior to 6.9 SP3 Build 430. This vulnerability can be exploited by remote attackers to read sensitive files and disrupt client updates. By connecting to the file transfer port before the anticipated client, an attacker can gain unauthorized access, potentially compromising the integrity and confidentiality of the system's data.

References

http://secunia.com/advisories/36502

third-party-advisoryx_refsource_SECUNIA

http://www.securityfocus.com/bid/36113

vdb-entryx_refsource_BID

http://www.symantec.com/security_response/securityupdates...

x_refsource_CONFIRM

Timeline

Vulnerability published
Sep 8, 2009
Vulnerability Reserved
Sep 8, 2009