CVSS: 6.5EPSS: 0%CPEs: 7EXPL: 0CVE-2010-0109
https://notcve.org/view.php?id=CVE-2010-0109
19 Feb 2018 — DBManager in Symantec Altiris Deployment Solution 6.9.x before DS 6.9 SP4 allows remote attackers to cause a denial of service via a crafted request. DBManager en Symantec Altiris Deployment Solution en versiones 6.9.x anteriores a DS 6.9 SP4 permite que los atacantes remotos provoquen una denegación de servicio (DoS) mediante una petición manipulada. • http://www.securityfocus.com/bid/38410 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 7.5EPSS: 6%CPEs: 23EXPL: 3CVE-2012-0292 – pcAnywhere 12.5.0 build 463 - Denial of Service
https://notcve.org/view.php?id=CVE-2012-0292
08 Mar 2012 — The awhost32 service in Symantec pcAnywhere through 12.5.3, Altiris IT Management Suite pcAnywhere Solution 7.0 (aka 12.5.x) and 7.1 (aka 12.6.x), Altiris Client Management Suite pcAnywhere Solution 7.0 (aka 12.5.x) and 7.1 (aka 12.6.x), and Altiris Deployment Solution Remote pcAnywhere Solution 7.1 (aka 12.5.x and 12.6.x) allows remote attackers to cause a denial of service (daemon crash) via a crafted TCP session on port 5631. El servicio awhost32 en Symantec pcAnywhere hasta v12.5.3, Altiris IT Managemen... • https://www.exploit-db.com/exploits/18493 • CWE-20: Improper Input Validation •
CVSS: 7.5EPSS: 0%CPEs: 22EXPL: 0CVE-2012-0291
https://notcve.org/view.php?id=CVE-2012-0291
22 Feb 2012 — Symantec pcAnywhere through 12.5.3, Altiris IT Management Suite pcAnywhere Solution 7.0 (aka 12.5.x) and 7.1 (aka 12.6.x), Altiris Client Management Suite pcAnywhere Solution 7.0 (aka 12.5.x) and 7.1 (aka 12.6.x), and Altiris Deployment Solution Remote pcAnywhere Solution 7.1 (aka 12.5.x and 12.6.x) allow remote attackers to cause a denial of service (application crash or hang) via (1) malformed data from a client, (2) malformed data from a server, or (3) an invalid response. Symantec pcAnywhere hasta la v1... • http://secunia.com/advisories/48092 • CWE-20: Improper Input Validation •
CVSS: 10.0EPSS: 2%CPEs: 31EXPL: 0CVE-2012-0290
https://notcve.org/view.php?id=CVE-2012-0290
06 Feb 2012 — Symantec pcAnywhere through 12.5.3, Altiris IT Management Suite pcAnywhere Solution 7.0 (aka 12.5.x) and 7.1 (aka 12.6.x), Altiris Client Management Suite pcAnywhere Solution 7.0 (aka 12.5.x) and 7.1 (aka 12.6.x), and Altiris Deployment Solution Remote pcAnywhere Solution 7.1 (aka 12.5.x and 12.6.x) do not properly handle the client state after abnormal termination of a remote session, which allows remote attackers to obtain access to the client by leveraging an "open client session." Symantec pcAnywhere ha... • http://secunia.com/advisories/48092 •
CVSS: 9.8EPSS: 72%CPEs: 30EXPL: 2CVE-2009-3028 – Symantec Altiris Deployment Solution - ActiveX Control Arbitrary File Download and Execute
https://notcve.org/view.php?id=CVE-2009-3028
07 Mar 2011 — The Altiris eXpress NS SC Download ActiveX control in AeXNSPkgDLLib.dll, as used in Symantec Altiris Deployment Solution 6.9.x, Notification Server 6.0.x, and Symantec Management Platform 7.0.x exposes an unsafe method, which allows remote attackers to force the download of arbitrary files and possibly execute arbitrary code via the DownloadAndInstall method. En Altiris eXpress NS SC la descarga del control ActiveX en AeXNSPkgDLLib.dll, como en Symantec Altiris Deployment Solution v6.9.x, Notification Serve... • https://www.exploit-db.com/exploits/16600 •
CVSS: 9.8EPSS: 72%CPEs: 16EXPL: 2CVE-2009-3033 – Symantec Altiris Deployment Solution - ActiveX Control Buffer Overflow
https://notcve.org/view.php?id=CVE-2009-3033
25 Nov 2009 — Buffer overflow in the RunCmd method in the Altiris eXpress NS Console Utilities ActiveX control in AeXNSConsoleUtilities.dll in the web console in Symantec Altiris Deployment Solution 6.9.x, Altiris Notification Server 6.0.x, and Management Platform 7.0.x allows remote attackers to execute arbitrary code via a long string in the second argument. Desbordamiento de búfer en el método RunCmd en Altiris eXpress NS Console Utilities ActiveX control en AeXNSConsoleUtilities.dll en la consola web de Symantec Alti... • https://www.exploit-db.com/exploits/16528 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 9.8EPSS: 76%CPEs: 13EXPL: 4CVE-2009-3031 – Symantec ConsoleUtilities - ActiveX Buffer Overflow
https://notcve.org/view.php?id=CVE-2009-3031
03 Nov 2009 — Stack-based buffer overflow in the BrowseAndSaveFile method in the Altiris eXpress NS ConsoleUtilities ActiveX control 6.0.0.1846 in AeXNSConsoleUtilities.dll in Symantec Altiris Notification Server (NS) 6.0 before R12, Deployment Server 6.8 and 6.9 in Symantec Altiris Deployment Solution 6.9 SP3, and Symantec Management Platform (SMP) 7.0 before SP3 allows remote attackers to execute arbitrary code via a long string in the second argument. Desbordamiento de búfer basado en pila en el método BrowseAndSaveFi... • https://www.exploit-db.com/exploits/9853 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2009-3178
https://notcve.org/view.php?id=CVE-2009-3178
11 Sep 2009 — Unspecified vulnerability in mm.exe in Symantec Altiris Deployment Solution 6.9 allows remote attackers to cause a denial of service via unknown attack vectors, as demonstrated by a certain module in VulnDisco Pack Professional 7.18, "Symantec Altiris Deployment Solution 6.9 DoS." NOTE: as of 20090909, this disclosure has no actionable information. However, because the VulnDisco Pack author is a reliable researcher, the issue is being assigned a CVE identifier for tracking purposes. Vulnerabilidad no especí... • http://intevydis.com/vd-list.shtml •
CVSS: 10.0EPSS: 6%CPEs: 1EXPL: 0CVE-2009-3179
https://notcve.org/view.php?id=CVE-2009-3179
11 Sep 2009 — Multiple unspecified vulnerabilities in Symantec Altiris Deployment Solution 6.9 might allow remote attackers to execute arbitrary code via unknown client-side attack vectors, as demonstrated by a certain module in VulnDisco Pack Professional 7.17, as identified by (1) "Symantec Altiris Deployment Solution 6.9 exploit, (2) "Symantec Altiris Deployment Solution 6.9 exploit (II)," and (3) "Symantec Altiris Deployment Solution 6.9 exploit (III)." NOTE: as of 20090909, this disclosure has no actionable informat... • http://intevydis.com/vd-list.shtml •
CVSS: 9.8EPSS: 0%CPEs: 3EXPL: 0CVE-2009-3107
https://notcve.org/view.php?id=CVE-2009-3107
08 Sep 2009 — Symantec Altiris Deployment Solution 6.9.x before 6.9 SP3 Build 430 does not properly restrict access to the listening port for the DBManager service, which allows remote attackers to bypass authentication and modify tasks or the Altiris Database via a connection to this service. Symantec Altiris Deployment Solution v6.9.x anterior a v6.9 SP3 Build 430 no restringe el acceso de forma adecuada al puerto de escucha para el servicio DBManager, esto permite a atacantes remotos evitar la autenticación y modifica... • http://secunia.com/advisories/36502 • CWE-287: Improper Authentication •