CVE-2008-2290

Unspecified vulnerability in the Agent user interface in Symantec Altiris Deployment Solution 6.8.x and 6.9.x before 6.9.176 allows local users to gain privileges via unknown attack vectors.

CVSS v2.0 7.2 HIGH

7.2^/10

CVSS v2.0 : HIGH

Vector : AV:L/AC:L/Au:N/C:C/I:C/A:C

Exploitability : 3.9 / Impact : 10.0

Access Vector LOCAL

Access Complexity LOW

Authentication NONE

Confidentiality Impact COMPLETE

Integrity Impact COMPLETE

Availability Impact COMPLETE

References

Link	Resource
http://www.symantec.com/avcenter/security/Content/2008.05.14a.html
http://www.securityfocus.com/bid/29194
http://secunia.com/advisories/30261
http://www.securitytracker.com/id?1020024
http://marc.info/?l=bugtraq&m=122167472229965&w=2
http://www.vupen.com/english/advisories/2008/1542/references
https://exchange.xforce.ibmcloud.com/vulnerabilities/42438

Advertisement

Configurations

Configuration 1 (hide)

OR	cpe:2.3:a:symantec:altiris_deployment_solution:6.8:::::::*
	cpe:2.3:a:symantec:altiris_deployment_solution:6.9:::::::*

Information

Published : 2008-05-18 07:20

Updated : 2017-08-07 18:30

NVD link : CVE-2008-2290

Mitre link : CVE-2008-2290

JSON object : View

CWE

CWE-264

Permissions, Privileges, and Access Controls

Advertisement

Products Affected

symantec

altiris_deployment_solution

{"cve": {"data_type": "CVE", "references": {"reference_data": [{"url": "http://www.symantec.com/avcenter/security/Content/2008.05.14a.html", "name": "http://www.symantec.com/avcenter/security/Content/2008.05.14a.html", "tags": [], "refsource": "CONFIRM"}, {"url": "http://www.securityfocus.com/bid/29194", "name": "29194", "tags": [], "refsource": "BID"}, {"url": "http://secunia.com/advisories/30261", "name": "30261", "tags": [], "refsource": "SECUNIA"}, {"url": "http://www.securitytracker.com/id?1020024", "name": "1020024", "tags": [], "refsource": "SECTRACK"}, {"url": "http://marc.info/?l=bugtraq&m=122167472229965&w=2", "name": "SSRT080115", "tags": [], "refsource": "HP"}, {"url": "http://www.vupen.com/english/advisories/2008/1542/references", "name": "ADV-2008-1542", "tags": [], "refsource": "VUPEN"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/42438", "name": "symantec-altiris-interface-priv-escalation(42438)", "tags": [], "refsource": "XF"}]}, "data_format": "MITRE", "description": {"description_data": [{"lang": "en", "value": "Unspecified vulnerability in the Agent user interface in Symantec Altiris Deployment Solution 6.8.x and 6.9.x before 6.9.176 allows local users to gain privileges via unknown attack vectors."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "en", "value": "CWE-264"}]}]}, "data_version": "4.0", "CVE_data_meta": {"ID": "CVE-2008-2290", "ASSIGNER": "cve@mitre.org"}}, "impact": {"baseMetricV2": {"cvssV2": {"version": "2.0", "baseScore": 7.2, "accessVector": "LOCAL", "vectorString": "AV:L/AC:L/Au:N/C:C/I:C/A:C", "authentication": "NONE", "integrityImpact": "COMPLETE", "accessComplexity": "LOW", "availabilityImpact": "COMPLETE", "confidentialityImpact": "COMPLETE"}, "severity": "HIGH", "acInsufInfo": true, "impactScore": 10.0, "obtainAllPrivilege": true, "exploitabilityScore": 3.9, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}}, "publishedDate": "2008-05-18T14:20Z", "configurations": {"nodes": [{"children": [], "operator": "OR", "cpe_match": [{"cpe23Uri": "cpe:2.3:a:symantec:altiris_deployment_solution:6.8:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:symantec:altiris_deployment_solution:6.9:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}]}], "CVE_data_version": "4.0"}, "lastModifiedDate": "2017-08-08T01:30Z"}