CVE-2008-6828

Sažetak

Symantec Altiris Deployment Solution 6.x before 6.9.355 SP1 stores the Application Identity Account password in memory in cleartext, which allows local users to gain privileges and modify clients of the Deployment Solution Server.

Reference

http://secunia.com/advisories/31773
http://securityresponse.symantec.com/avcenter/security/Content/2008.10.20b.html
http://www.securityfocus.com/bid/31767
http://www.securitytracker.com/id?1021072
http://www.vupen.com/english/advisories/2008/2876
https://exchange.xforce.ibmcloud.com/vulnerabilities/46007

CVSS

Base:	4.3
Impact:	6.4
Exploitability:	3.1

Pristup

Vektor	Složenost	Autentikacija
LOCAL	LOW	SINGLE

Impact

Povjerljivost	Cjelovitost	Dostupnost
PARTIAL	PARTIAL	PARTIAL

CVSS vektor

AV:L/AC:L/Au:S/C:P/I:P/A:P

Zadnje važnije ažuriranje

14-02-2024 - 15:20

Objavljeno

08-06-2009 - 19:30