Lucene search

[email protected]NVD:CVE-2008-1473

HistoryMar 24, 2008 - 10:44 p.m.

CVE-2008-1473

2008-03-2422:44:00

CWE-264

[email protected]

web.nvd.nist.gov

CVSS2

7.2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

AI Score

6.5

Confidence

High

EPSS

Percentile

5.1%

JSON

The Altiris Client Service (AClient.exe) in Symantec Altiris Deployment Solution 6.8.x before 6.9.164 allows local users to gain privileges via a “Shatter” style attack.

Affected configurations

Nvd

Node

symantecaltiris_deployment_solutionMatch6.8

symantecaltiris_deployment_solutionMatch6.8sp1

symantecaltiris_deployment_solutionMatch6.8sp2

symantecaltiris_deployment_solutionMatch6.8.282

symantecaltiris_deployment_solutionMatch6.8.378

symantecaltiris_deployment_solutionMatch6.8.380

symantecaltiris_deployment_solutionMatch6.8.380.0

VendorProductVersionCPE
symantecaltiris_deployment_solution6.8cpe:2.3:a:symantec:altiris_deployment_solution:6.8:*:*:*:*:*:*:*
symantecaltiris_deployment_solution6.8cpe:2.3:a:symantec:altiris_deployment_solution:6.8:sp1:*:*:*:*:*:*
symantecaltiris_deployment_solution6.8cpe:2.3:a:symantec:altiris_deployment_solution:6.8:sp2:*:*:*:*:*:*
symantecaltiris_deployment_solution6.8.282cpe:2.3:a:symantec:altiris_deployment_solution:6.8.282:*:*:*:*:*:*:*
symantecaltiris_deployment_solution6.8.378cpe:2.3:a:symantec:altiris_deployment_solution:6.8.378:*:*:*:*:*:*:*
symantecaltiris_deployment_solution6.8.380cpe:2.3:a:symantec:altiris_deployment_solution:6.8.380:*:*:*:*:*:*:*
symantecaltiris_deployment_solution6.8.380.0cpe:2.3:a:symantec:altiris_deployment_solution:6.8.380.0:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
symantec	altiris_deployment_solution	6.8	cpe:2.3:a:symantec:altiris_deployment_solution:6.8:::::::*
symantec	altiris_deployment_solution	6.8	cpe:2.3:a:symantec:altiris_deployment_solution:6.8:sp1::::::
symantec	altiris_deployment_solution	6.8	cpe:2.3:a:symantec:altiris_deployment_solution:6.8:sp2::::::
symantec	altiris_deployment_solution	6.8.282	cpe:2.3:a:symantec:altiris_deployment_solution:6.8.282:::::::*
symantec	altiris_deployment_solution	6.8.378	cpe:2.3:a:symantec:altiris_deployment_solution:6.8.378:::::::*
symantec	altiris_deployment_solution	6.8.380	cpe:2.3:a:symantec:altiris_deployment_solution:6.8.380:::::::*
symantec	altiris_deployment_solution	6.8.380.0	cpe:2.3:a:symantec:altiris_deployment_solution:6.8.380.0:::::::*

References

secunia.com/advisories/29319

securityresponse.symantec.com/avcenter/security/Content/2008.03.10.html

www.securityfocus.com/bid/28110

www.securitytracker.com/id?1019569

www.vupen.com/english/advisories/2008/0843/references

exchange.xforce.ibmcloud.com/vulnerabilities/41100

CVSS2

7.2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

AI Score

6.5

Confidence

High

EPSS

Percentile

5.1%

JSON

Related for NVD:CVE-2008-1473

prion1 cve1 cvelist1 nessus1