Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cveMitreCVE-2007-5838
HistoryNov 06, 2007 - 7:46 p.m.

CVE-2007-5838

2007-11-0619:46:00
CWE-16
mitre
web.nvd.nist.gov
28
symantec
altiris
deployment solution
system privileges
cve-2007-5838
security vulnerability

CVSS2

7.2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

AI Score

6.5

Confidence

Low

EPSS

0

Percentile

5.1%

JSON

Aclient in Symantec Altiris Deployment Solution 6.x before 6.8.380.0 allows local users to gain local System privileges via the “Enable key-based authentication to Deployment server” browser option, a different issue than CVE-2007-4380.

Affected configurations

Nvd
Node
symantecaltiris_deployment_solutionMatch6
OR
symantecaltiris_deployment_solutionMatch6.8
OR
symantecaltiris_deployment_solutionMatch6.8sp1
OR
symantecaltiris_deployment_solutionMatch6.8sp2
VendorProductVersionCPE
symantecaltiris_deployment_solution6cpe:2.3:a:symantec:altiris_deployment_solution:6:*:*:*:*:*:*:*
symantecaltiris_deployment_solution6.8cpe:2.3:a:symantec:altiris_deployment_solution:6.8:*:*:*:*:*:*:*
symantecaltiris_deployment_solution6.8cpe:2.3:a:symantec:altiris_deployment_solution:6.8:sp1:*:*:*:*:*:*
symantecaltiris_deployment_solution6.8cpe:2.3:a:symantec:altiris_deployment_solution:6.8:sp2:*:*:*:*:*:*

Related

cvelist 2
prion 2
nvd 2
nessus 2
cve 1
cvelist
cvelist
CVE-2007-5838
2007-11-06 19:00:00
CVE-2007-4380
2007-08-16 18:00:00
prion
prion
Design/Logic Flaw
2007-11-06 19:46:00
Design/Logic Flaw
2007-08-16 18:17:00
nvd
nvd
CVE-2007-5838
2007-11-06 19:46:00
CVE-2007-4380
2007-08-16 18:17:00
nessus
nessus
Altiris AClient < 6.8.380 Local Vulnerabilities
2007-10-31 00:00:00
Altiris Deployment Solution Aclient Process (aclient.exe) Log File Viewer Local Privilege Escalation
2007-08-17 00:00:00
cve
cve
CVE-2007-4380
2007-08-16 18:17:00

CVSS2

7.2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

AI Score

6.5

Confidence

Low

EPSS

0

Percentile

5.1%

JSON
Related for CVE-2007-5838
cvelist2prion2nvd2nessus2cve1