CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:L/AC:L/Au:N/C:P/I:P/A:P
AI Score
Confidence
Low
EPSS
Percentile
5.1%
The Altiris Client Service for Windows (ACLIENT.EXE) 6.0.88 allows local users to disable password protection and access the administrative interface by finding and showing the “Altiris Client Service” hidden window, disabling the password protection, disabling the “Hide client tray icon box” option, then opening the AClient tray icon and using the View Log File option, a different vulnerability than CVE-2004-2070.
Vendor | Product | Version | CPE |
---|---|---|---|
altiris | client_service | 6.0.88 | cpe:2.3:a:altiris:client_service:6.0.88:*:*:*:*:*:*:* |
altiris | deployment_solution | 5.6 | cpe:2.3:a:altiris:deployment_solution:5.6:sp1:*:*:*:*:*:* |
altiris | deployment_solution | 5.6.181 | cpe:2.3:a:altiris:deployment_solution:5.6.181:*:*:*:*:*:*:* |
altiris | deployment_solution | 6.0 | cpe:2.3:a:altiris:deployment_solution:6.0:*:*:*:*:*:*:* |