CVE-2009-3110

CWE-362Race Condition3 documents3 sources
Severity
5.8MEDIUM
EPSS
0.7%
top 28.84%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Symantec Altiris Deployment Solution
Timeline
PublishedSep 8
Latest updateMay 2

Description

Race condition in the file transfer functionality in Symantec Altiris Deployment Solution 6.9.x before 6.9 SP3 Build 430 allows remote attackers to read sensitive files and prevent client updates by connecting to the file transfer port before the expected client does.

CVSS vector

AV:N/AC:M/C:P/I:N/A:PExploitability: 8.6 | Impact: 4.9

Affected Packages1 packages

🔴Vulnerability Details

2
GHSA
GHSA-c3w4-m4vr-9g7g: Race condition in the file transfer functionality in Symantec Altiris Deployment Solution 62022-05-02
CVEList
CVE-2009-3110: Race condition in the file transfer functionality in Symantec Altiris Deployment Solution 62009-09-08
CVE-2009-3110 (MEDIUM CVSS 5.8) | Race condition in the file transfer | cvebase.io