CVE-2009-3028

The Altiris eXpress NS SC Download ActiveX control in AeXNSPkgDLLib.dll, as used in Symantec Altiris Deployment Solution 6.9.x, Notification Server 6.0.x, and Symantec Management Platform 7.0.x exposes an unsafe method, which allows remote attackers to force the download of arbitrary files and possibly execute arbitrary code via the DownloadAndInstall method.

CVSS v2.0 6.8 MEDIUM

6.8^/10

CVSS v2.0 : MEDIUM

V2 Legend

Vector : AV:N/AC:M/Au:N/C:P/I:P/A:P

Exploitability : 8.6 / Impact : 6.4

Access Vector NETWORK

Access Complexity MEDIUM

Authentication NONE

Confidentiality Impact PARTIAL

Integrity Impact PARTIAL

Availability Impact PARTIAL

References

Link	Resource
http://www.symantec.com/business/support/index?page=content&id=TECH44885	Patch
http://secunia.com/advisories/36679	Vendor Advisory
http://www.osvdb.org/57893
http://www.securityfocus.com/bid/36346	Exploit
http://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&year=2009&suid=20090922_00

Configurations

Configuration 1 (hide)

OR	cpe:2.3:a:symantec:altiris_deployment_solution:6.9:sp2::::::
	cpe:2.3:a:symantec:altiris_deployment_solution:6.9:::::::*
	cpe:2.3:a:symantec:altiris_deployment_solution:6.9:sp1::::::
	cpe:2.3:a:symantec:altiris_deployment_solution:6.9:sp3::::::
	cpe:2.3:a:symantec:altiris_deployment_solution:6.9:sp4::::::

Configuration 2 (hide)

OR	cpe:2.3:a:symantec:altiris_notification_server:6.0:sp3_r6::::::
	cpe:2.3:a:symantec:altiris_notification_server:6.0:sp3_r10::::::
	cpe:2.3:a:symantec:altiris_notification_server:6.0:sp1::::::
	cpe:2.3:a:symantec:altiris_notification_server:6.0:sp1_hf12::::::
	cpe:2.3:a:symantec:altiris_notification_server:6.0:sp3_r4::::::
	cpe:2.3:a:symantec:altiris_notification_server:6.0:sp3_r5::::::
	cpe:2.3:a:symantec:altiris_notification_server:6.0:sp3::::::
	cpe:2.3:a:symantec:altiris_notification_server:6.0:::::::*
	cpe:2.3:a:symantec:altiris_notification_server:6.0:sp3_r3::::::
	cpe:2.3:a:symantec:altiris_notification_server:6.0:sp3_r2::::::
	cpe:2.3:a:symantec:altiris_notification_server:6.0:sp3_r13::::::
	cpe:2.3:a:symantec:altiris_notification_server:6.0:sp3_r11::::::
	cpe:2.3:a:symantec:altiris_notification_server:6.0:sp3_r7::::::
	cpe:2.3:a:symantec:altiris_notification_server:6.0:sp3_r1::::::
	cpe:2.3:a:symantec:altiris_notification_server:6.0:sp2::::::
	cpe:2.3:a:symantec:altiris_notification_server:6.0:sp3_r9::::::
	cpe:2.3:a:symantec:altiris_notification_server:6.0:sp3_r8::::::
	cpe:2.3:a:symantec:altiris_notification_server:6.0:sp3_r12::::::

Configuration 3 (hide)

OR	cpe:2.3:a:symantec:management_platform:7.0:sp4::::::
	cpe:2.3:a:symantec:management_platform:7.0:sp5::::::
	cpe:2.3:a:symantec:management_platform:7.0:sp1::::::
	cpe:2.3:a:symantec:management_platform:7.0:sp2::::::
	cpe:2.3:a:symantec:management_platform:7.0:sp3::::::
	cpe:2.3:a:symantec:management_platform:7.0:::::::*
	cpe:2.3:a:symantec:management_platform:7.0:rc5::::::

Information

Published : 2011-03-07 13:00

Updated : 2013-02-06 20:21

NVD link : CVE-2009-3028

Mitre link : CVE-2009-3028

JSON object : View

CWE

NVD-CWE-Other

Products Affected

symantec

altiris_notification_server
management_platform
altiris_deployment_solution

{"cve": {"data_type": "CVE", "references": {"reference_data": [{"url": "http://www.symantec.com/business/support/index?page=content&id=TECH44885", "name": "http://www.symantec.com/business/support/index?page=content&id=TECH44885", "tags": ["Patch"], "refsource": "CONFIRM"}, {"url": "http://secunia.com/advisories/36679", "name": "36679", "tags": ["Vendor Advisory"], "refsource": "SECUNIA"}, {"url": "http://www.osvdb.org/57893", "name": "57893", "tags": [], "refsource": "OSVDB"}, {"url": "http://www.securityfocus.com/bid/36346", "name": "36346", "tags": ["Exploit"], "refsource": "BID"}, {"url": "http://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&year=2009&suid=20090922_00", "name": "http://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&year=2009&suid=20090922_00", "tags": [], "refsource": "CONFIRM"}]}, "data_format": "MITRE", "description": {"description_data": [{"lang": "en", "value": "The Altiris eXpress NS SC Download ActiveX control in AeXNSPkgDLLib.dll, as used in Symantec Altiris Deployment Solution 6.9.x, Notification Server 6.0.x, and Symantec Management Platform 7.0.x exposes an unsafe method, which allows remote attackers to force the download of arbitrary files and possibly execute arbitrary code via the DownloadAndInstall method."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "en", "value": "NVD-CWE-Other"}]}]}, "data_version": "4.0", "CVE_data_meta": {"ID": "CVE-2009-3028", "ASSIGNER": "cve@mitre.org"}}, "impact": {"baseMetricV2": {"cvssV2": {"version": "2.0", "baseScore": 6.8, "accessVector": "NETWORK", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "authentication": "NONE", "integrityImpact": "PARTIAL", "accessComplexity": "MEDIUM", "availabilityImpact": "PARTIAL", "confidentialityImpact": "PARTIAL"}, "severity": "MEDIUM", "impactScore": 6.4, "obtainAllPrivilege": false, "exploitabilityScore": 8.6, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": true}}, "publishedDate": "2011-03-07T21:00Z", "configurations": {"nodes": [{"children": [], "operator": "OR", "cpe_match": [{"cpe23Uri": "cpe:2.3:a:symantec:altiris_deployment_solution:6.9:sp2:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:symantec:altiris_deployment_solution:6.9:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:symantec:altiris_deployment_solution:6.9:sp1:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:symantec:altiris_deployment_solution:6.9:sp3:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:symantec:altiris_deployment_solution:6.9:sp4:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}]}, {"children": [], "operator": "OR", "cpe_match": [{"cpe23Uri": "cpe:2.3:a:symantec:altiris_notification_server:6.0:sp3_r6:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:symantec:altiris_notification_server:6.0:sp3_r10:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:symantec:altiris_notification_server:6.0:sp1:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:symantec:altiris_notification_server:6.0:sp1_hf12:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:symantec:altiris_notification_server:6.0:sp3_r4:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:symantec:altiris_notification_server:6.0:sp3_r5:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:symantec:altiris_notification_server:6.0:sp3:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:symantec:altiris_notification_server:6.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:symantec:altiris_notification_server:6.0:sp3_r3:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:symantec:altiris_notification_server:6.0:sp3_r2:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:symantec:altiris_notification_server:6.0:sp3_r13:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:symantec:altiris_notification_server:6.0:sp3_r11:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:symantec:altiris_notification_server:6.0:sp3_r7:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:symantec:altiris_notification_server:6.0:sp3_r1:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:symantec:altiris_notification_server:6.0:sp2:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:symantec:altiris_notification_server:6.0:sp3_r9:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:symantec:altiris_notification_server:6.0:sp3_r8:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:symantec:altiris_notification_server:6.0:sp3_r12:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}]}, {"children": [], "operator": "OR", "cpe_match": [{"cpe23Uri": "cpe:2.3:a:symantec:management_platform:7.0:sp4:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:symantec:management_platform:7.0:sp5:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:symantec:management_platform:7.0:sp1:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:symantec:management_platform:7.0:sp2:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:symantec:management_platform:7.0:sp3:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:symantec:management_platform:7.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:symantec:management_platform:7.0:rc5:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}]}], "CVE_data_version": "4.0"}, "lastModifiedDate": "2013-02-07T04:21Z"}

6.8 /10