Detections
Analytics

Altiris Deployment Solution Server < 6.9 SP4 DBManager DoS (SYM10-007)

low Nessus Plugin ID 45592

Language:

Synopsis

The remote Windows host has a deployment server that is affected by a denial of service vulnerability.

Description

The version of Altiris Deployment Solution installed on the remote host is reportedly affected by a denial of service vulnerability. The DBManager component has a use-after-free error when processing specially crafted 'CreateSession' and 'PXEManagerSignOn' requests.

A remote attacker could exploit this to crash the DBManager service.

Solution

Upgrade to Altiris Deployment Solution Server 6.9 SP4 or later.

See Also

http://www.nessus.org/u?b2170fc0

Plugin Details

Severity: Low

ID: 45592

File Name: altiris_deployment_solution_server_6_9_sp4.nasl

Version: 1.7

Type: remote

Agent: windows

Family: Windows

Published: 4/21/2010

Updated: 11/15/2018

Supported Sensors: Nessus

Risk Information

VPR

Risk Factor: Low

Score: 3.6

CVSS v2

Risk Factor: Low

Base Score: 3.3

Temporal Score: 2.4

Vector: CVSS2#AV:A/AC:L/Au:N/C:N/I:N/A:P

Vulnerability Information

Exploit Ease: No known exploits are available

Patch Publication Date: 4/20/2010

Vulnerability Publication Date: 2/25/2010

Reference Information

CVE: CVE-2010-0109

BID: 38410

Secunia: 38719