CVE-2008-2287

CWE-2643 documents3 sources
Severity
7.2HIGH
EPSS
0.1%
top 79.38%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Symantec Altiris Deployment Solution
Timeline
PublishedMay 18
Latest updateMay 1

Description

Symantec Altiris Deployment Solution 6.8.x and 6.9.x before 6.9.176 does not properly protect the install directory, which might allow local users to gain privileges by replacing an application component with a Trojan horse.

CVSS vector

AV:L/AC:L/C:C/I:C/A:CExploitability: 3.9 | Impact: 10.0

Affected Packages1 packages

Patches

Patch: www.symantec.com โ†—Patch: www.symantec.com โ†—

๐Ÿ”ดVulnerability Details

2
GHSA
GHSA-xpjc-cq5g-ggfp: Symantec Altiris Deployment Solution 6โ†—2022-05-01
โ–ถ
CVEList
CVE-2008-2287: Symantec Altiris Deployment Solution 6โ†—2008-05-18
โ–ถ
CVE-2008-2287 (HIGH CVSS 7.2) | Symantec Altiris Deployment Solutio | cvebase.io