CVE-2008-1473
https://notcve.org/view.php?id=CVE-2008-1473
The Altiris Client Service (AClient.exe) in Symantec Altiris Deployment Solution 6.8.x before 6.9.164 allows local users to gain privileges via a "Shatter" style attack. El Altiris Client Service (AClient.exe) en Symantec Altiris Deployment Solution versiones 6.8.x anteriores a 6.9.164, permite a los usuarios locales alcanzar privilegios mediante un ataque estilo "Shatter". • http://secunia.com/advisories/29319 http://securityresponse.symantec.com/avcenter/security/Content/2008.03.10.html http://www.securityfocus.com/bid/28110 http://www.securitytracker.com/id?1019569 http://www.vupen.com/english/advisories/2008/0843/references https://exchange.xforce.ibmcloud.com/vulnerabilities/41100 • CWE-264: Permissions, Privileges, and Access Controls •
CVE-2007-5838
https://notcve.org/view.php?id=CVE-2007-5838
Aclient in Symantec Altiris Deployment Solution 6.x before 6.8.380.0 allows local users to gain local System privileges via the "Enable key-based authentication to Deployment server" browser option, a different issue than CVE-2007-4380. Aclient en Symantec Altiris Deployment Solution 6.x anterior a 6.8.380.0 permite a usuarios locales ganar privilegios de sistemas locales a través de la opción del navegador "servidor de despliegue con la autenticación basada en llave habilitados", un asundo diferente que CVE-2007-4380. • http://secunia.com/advisories/27412 http://www.irmplc.com/index.php/111-Vendor-Alerts http://www.irmplc.com/index.php/152-Advisory-022 http://www.securityfocus.com/bid/26265 http://www.securitytracker.com/id?1018876 http://www.symantec.com/avcenter/security/Content/2007.10.31a.html http://www.vupen.com/english/advisories/2007/3673 https://exchange.xforce.ibmcloud.com/vulnerabilities/38180 • CWE-16: Configuration •
CVE-2007-5555
https://notcve.org/view.php?id=CVE-2007-5555
Unspecified vulnerability in Symantec Altiris Deployment Solution allows attackers to obtain authentication credentials via unknown vectors, aka "Authentication Credentials Information Leakage in Altiris Deployment Solution." NOTE: this description is based on a vague pre-advisory with no actionable information. However, since it is from a well-known researcher, it is being assigned a CVE identifier for tracking purposes. Una vulnerabilidad no especificada en Symantec Altiris Deployment Solution, permite a atacantes obtener credenciales de autenticación por medio de vectores desconocidos, también se conoce como "Authentication Credentials Information Leakage in Altiris Deployment Solution". NOTA: esta descripción está basada en un aviso preliminar vago sin información procesable. • http://www.irmplc.com/index.php/111-Vendor-Alerts • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVE-2007-4380
https://notcve.org/view.php?id=CVE-2007-4380
Aclient in Symantec Altiris Deployment Solution 6 before 6.8 SP2 (6.8.378) allows local users to gain local System privileges via the Log File Viewer. Aclient en Symantec Altiris Deployment Solution 6 anterior a 6.8 SP2 (6.8.378) permite a usuarios locales obtener privilegios de System en local mediante el Visor de Archivos de Registro (Log File Viewer). • http://secunia.com/advisories/26435 http://securityresponse.symantec.com/avcenter/security/Content/2007.08.13.html http://www.irmplc.com/index.php/111-Vendor-Alerts http://www.irmplc.com/index.php/152-Advisory-022 http://www.securityfocus.com/bid/25232 http://www.securitytracker.com/id?1018552 http://www.vupen.com/english/advisories/2007/2879 https://exchange.xforce.ibmcloud.com/vulnerabilities/36004 •