Altiris Deployment Solution < 6.9.176 Multiple Vulnerabilities

high Nessus Network Monitor Plugin ID 4504

Synopsis

The remote Windows host has a program that is affected by multiple vulnerabilities.

Description

The version of the Altiris Deployment Solution installed on the remote host reportedly is affected by several issues :

- A SQL injection vulnerability that could allow a user to run arbitrary code
- A remote attacker may be able to obtain encrypted Altiris Deployment Solution domain credentials without authentication.
- A local user could access a privileged command prompt via the Agent's user interface.
- A local user could leverage a GUI tooltip to access a privileged command prompt.
- A local user can modify or delete several registry keys used by the application, resulting in unauthorized access to system information or disruption of service.
- A local user with access to the install directory of Deployment Solution could replace application components, which might then run with administrative privileges on an affected system.

Solution

Upgrade to Altiris Deployment Solution 6.9.176 or later and update Agents.

See Also

http://archives.neohapsis.com/archives/bugtraq/2008-05/0212.html

http://archives.neohapsis.com/archives/bugtraq/2008-05/0219.html

http://www.zerodayinitiative.com/advisories/ZDI-08-024

http://www.zerodayinitiative.com/advisories/ZDI-08-025

http://archives.neohapsis.com/archives/bugtraq/2008-05/0194.html

http://archives.neohapsis.com/archives/bugtraq/2008-05/0195.html

http://www.symantec.com/avcenter/security/Content/2008.05.14a.html

Plugin Details

Severity: High

ID: 4504

Family: Generic

Published: 8/18/2004

Updated: 3/6/2019

Nessus ID: 32323

Risk Information

VPR

Risk Factor: High

Score: 7.0

CVSS v2

Risk Factor: High

Base Score: 7.2

Temporal Score: 6

Vector: CVSS2#AV:L/AC:L/Au:N/C:C/I:C/A:C

CVSS v3

Risk Factor: High

Base Score: 8.4

Temporal Score: 7.8

Vector: CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Temporal Vector: CVSS:3.0/E:F/RL:O/RC:C

Vulnerability Information

CPE: cpe:/a:symantec:altiris_deployment_solution

Exploitable With

Metasploit (Symantec Altiris DS SQL Injection)

Reference Information

CVE: CVE-2008-2286, CVE-2008-2287, CVE-2008-2288, CVE-2008-2289, CVE-2008-2290, CVE-2008-2291

BID: 29218, 29194, 29196, 29197, 29198, 29199