CVE-2007-5838 — Altiris Deployment Solution vulnerability

3 documents3 sources

Severity

7.2HIGHNVD

EPSS

0.1%

top 65.09%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Symantec Altiris Deployment Solution

Timeline

PublishedNov 6

Latest updateMay 1

Description

Aclient in Symantec Altiris Deployment Solution 6.x before 6.8.380.0 allows local users to gain local System privileges via the "Enable key-based authentication to Deployment server" browser option, a different issue than CVE-2007-4380.

CVSS vector

AV:L/AC:L/C:C/I:C/A:CExploitability: 3.9 | Impact: 10.0

Affected Packages1 packages

▶NVDsymantec/altiris_deployment_solution6, 6.8+1

Patches

Patch: secunia.com ↗Patch: www.securityfocus.com ↗Patch: www.symantec.com ↗

🔴Vulnerability Details

GHSA

GHSA-cww9-mj85-mj6v: Aclient in Symantec Altiris Deployment Solution 6↗2022-05-01

▶

CVEList

CVE-2007-5838: Aclient in Symantec Altiris Deployment Solution 6↗2007-11-06

▶