CVE-2009-3107
First published: Tue Sep 08 2009(Updated: )
Symantec Altiris Deployment Solution 6.9.x before 6.9 SP3 Build 430 does not properly restrict access to the listening port for the DBManager service, which allows remote attackers to bypass authentication and modify tasks or the Altiris Database via a connection to this service.
Credit: cve@mitre.org cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Symantec Altiris Deployment Solution | =6.9-sp2 | |
| Symantec Altiris Deployment Solution | =6.9 | |
| Symantec Altiris Deployment Solution | =6.9-sp1 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- collector/nvd-historical
- collector/nvd-index
- agent/references
- agent/type
- agent/softwarecombine
- agent/first-publish-date
- collector/nvd-api
- source/NVD
- agent/software-canonical-lookup
- agent/author
- agent/weakness
- agent/severity
- agent/last-modified-date
- agent/tags
- agent/description
- agent/event
- collector/mitre-cve
- source/MITRE
- vendor/symantec
- canonical/symantec altiris deployment solution
- version/symantec altiris deployment solution/6.9-sp2
- version/symantec altiris deployment solution/6.9
- version/symantec altiris deployment solution/6.9-sp1