Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
saintSAINT CorporationSAINT:3A35F442D4204C127DC5B12A163489C8
HistoryNov 18, 2013 - 12:00 a.m.

Symantec Altiris DS SQL injection

2013-11-1800:00:00
SAINT Corporation
www.saintcorporation.com
20

0.362 Low

EPSS

Percentile

97.2%

JSON

Added: 11/18/2013
CVE: CVE-2008-2286
BID: 29198
OSVDB: 45313

Background

Altiris Deployment Solution (DS) is software for managing the configuration of machines on a network.

Problem

An SQL injection vulnerability allows remote attackers to execute arbitrary commands by sending a specially crafted notification packet to port 402/tcp.

Resolution

Apply the update referenced in SYM008-012.

References

<http://www.securityfocus.com/archive/1/492229&gt;

Limitations

Exploit requires the tftp command-line client to exist on the target computer.

Platforms

Windows

Related

prion 1
nvd 1
cve 1
zdt 1
saint 3
cvelist 1
zdi 1
packetstorm 1
nessus 1
prion
prion
Sql injection
2008-05-18 14:20:00
nvd
nvd
CVE-2008-2286
2008-05-18 14:20:00
cve
cve
CVE-2008-2286
2008-05-18 14:20:00
zdt
zdt
Symantec Altiris DS SQL Injection Exploit
2013-11-13 00:00:00
saint
saint
Symantec Altiris DS SQL injection
2013-11-18 00:00:00
Symantec Altiris DS SQL injection
2013-11-18 00:00:00
Symantec Altiris DS SQL injection
2013-11-18 00:00:00
cvelist
cvelist
CVE-2008-2286
2008-05-18 14:00:00
zdi
zdi
Symantec Altiris Deployment Solution SQL Injection Vulnerability
2008-05-15 00:00:00
packetstorm
packetstorm
Symantec Altiris DS SQL Injection
2013-11-09 00:00:00
nessus
nessus
Altiris Deployment Solution < 6.9.176 Multiple Vulnerabilities
2008-05-15 00:00:00

0.362 Low

EPSS

Percentile

97.2%

JSON
Related for SAINT:3A35F442D4204C127DC5B12A163489C8
prion1nvd1cve1zdt1saint3cvelist1zdi1packetstorm1nessus1