SecurityTracker.com
    Home    |    View Topics    |    Search    |    Contact Us    |   

SecurityTracker
Archives


 


Category:   Application (Generic)  >   Symantec Deployment Solution (Altiris) Vendors:   Symantec
Symantec Altiris Deployment Solution Stores AClient Password in Memory in Clear Text
SecurityTracker Alert ID:  1019825
SecurityTracker URL:  http://securitytracker.com/id/1019825
CVE Reference:   CVE-2008-1754   (Links to External Site)
Updated:  Apr 17 2008
Original Entry Date:  Apr 10 2008
Impact:   Disclosure of authentication information, Root access via local system
Fix Available:  Yes  Vendor Confirmed:  Yes  Exploit Included:  Yes  
Version(s): 6.8.x
Description:   A vulnerability was reported in Symantec Altiris Deployment Solution. A local user can obtain the AClient password and then gain system privileges.

The software stores the AClient password in system memory. A local user can dump the system memory for AClient.exe to obtain the password.

The local user can then use this password to access the local agent administrative interface and execute arbitrary code with system level privileges.

Mazin Faour of Information Risk Management reported this vulnerability.

Impact:   A local can obtain the AClient password.
Solution:   The vendor has issued a fixed version (6.9.164), available at:

http://www.altiris.com/download.aspx

The vendor's advisory is available at:

http://securityresponse.symantec.com/avcenter/security/Content/2008.04.10.html

Vendor URL:  securityresponse.symantec.com/avcenter/security/Content/2008.04.10.html (Links to External Site)
Cause:   Access control error
Underlying OS:  Windows (Any)

Message History:   None.


 Source Message Contents



[Original Message Not Available for Viewing]


Go to the Top of This SecurityTracker Archive Page





Home   |    View Topics   |    Search   |    Contact Us

This web site uses cookies for web analytics. Learn More

Copyright 2020, SecurityGlobal.net LLC