CVE-2008-2794
Severity Score
6.8
*CVSS v2
Exploit Likelihood
*EPSS
Affected Versions
*CPE
Public Exploits
0
*Multiple Sources
Exploited in Wild
-
*KEV
Decision
-
*SSVC
Descriptions
Unspecified vulnerability in the GUI in Symantec Altiris Notification Server Agent 6.x before 6.0 SP3 R8 allows local users to gain privileges via unknown attack vectors.
Vulnerabilidad no especificada en el GUI de Symantec Altiris Notification Server Agent versiones 6.x anteriores a 6.0 SP3 R8 permite a usuarios locales obtener mayores privilegios mediante vectores de ataque desconocidos.
*Credits:
N/A
CVSS Scores
Attack Vector
Attack Complexity
Authentication
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:-
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2008-06-19 CVE Reserved
- 2008-06-20 CVE Published
- 2023-03-08 EPSS Updated
- 2024-08-07 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-264: Permissions, Privileges, and Access Controls
CAPEC
References (6)
| URL | Tag | Source |
|---|---|---|
| http://www.securityfocus.com/bid/29708 | Vdb Entry | |
| http://www.securitytracker.com/id?1020304 | Vdb Entry | |
| http://www.vupen.com/english/advisories/2008/1861/references | Vdb Entry | |
| https://exchange.xforce.ibmcloud.com/vulnerabilities/43154 | Vdb Entry |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|---|---|
| http://securityresponse.symantec.com/avcenter/security/Content/2008.06.17.html | 2017-08-08 |
| URL | Date | SRC |
|---|---|---|
| http://secunia.com/advisories/30741 | 2017-08-08 |
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Symantec Search vendor "Symantec" | Altiris Notification Server Search vendor "Symantec" for product "Altiris Notification Server" | 6.0 Search vendor "Symantec" for product "Altiris Notification Server" and version "6.0" | - |
Affected
| ||||||
| Symantec Search vendor "Symantec" | Altiris Notification Server Search vendor "Symantec" for product "Altiris Notification Server" | 6.0 Search vendor "Symantec" for product "Altiris Notification Server" and version "6.0" | sp1 |
Affected
| ||||||
| Symantec Search vendor "Symantec" | Altiris Notification Server Search vendor "Symantec" for product "Altiris Notification Server" | 6.0 Search vendor "Symantec" for product "Altiris Notification Server" and version "6.0" | sp2 |
Affected
| ||||||
| Symantec Search vendor "Symantec" | Altiris Notification Server Search vendor "Symantec" for product "Altiris Notification Server" | 6.0 Search vendor "Symantec" for product "Altiris Notification Server" and version "6.0" | sp3 |
Affected
| ||||||
| Symantec Search vendor "Symantec" | Altiris Notification Server Search vendor "Symantec" for product "Altiris Notification Server" | 6.0 Search vendor "Symantec" for product "Altiris Notification Server" and version "6.0" | sp3_r7 |
Affected
| ||||||