Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

6 matches found

NVD
NVDadded 2011/03/07 9:0 p.m.14 views

CVE-2009-3028

The Altiris eXpress NS SC Download ActiveX control in AeXNSPkgDLLib.dll, as used in Symantec Altiris Deployment Solution 6.9.x, Notification Server 6.0.x, and Symantec Management Platform 7.0.x exposes an unsafe method, which allows remote attackers to force the download of arbitrary files and...

6.8CVSS7.5AI score0.62601EPSS
Exploits5References5
CVE
CVEadded 2011/03/07 8:0 p.m.59 views

CVE-2009-3028

The CVE-2009-3028 entry concerns Symantec Altiris components (AeXNSPkgDLLib.dll) used in Altiris Deployment Solution 6.9.x, Notification Server 6.0.x, and Management Platform 7.0.x. The AeXNSPkgDL.1 ActiveX control exposes an unsafe method, DownloadAndInstall, which can be abused to force the dow...

6.8CVSS7.7AI score0.62601EPSS
Exploits5References5Affected Software1
Kaspersky
Kasperskyadded 2011/03/07 12:0 a.m.27 views

KLA10058 WLF vulnerability in Altiris Notification Server

An unspecified vulnerability was found in the Symantec products. By exploiting this vulnerability malicious users can download and write local files. This vulnerability can be exploited from the network at a point related to eXpress NS SC Download. Original advisories Symantec security advisory...

6.8CVSS6.2AI score0.62601EPSS
Exploits5References3
Circl
Circladded 2010/11/24 12:0 a.m.4 views

CVE-2009-3028

creationtimestamp| type| source ---|---|--- 2010-11-24 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/16600 2018-05-29 15:50:33+00:00| seen| https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/browser/symantecaltirisdeploymentdownloadandinstall.rb...

6.8CVSS5.7AI score0.62601EPSS
Exploits5References2
Packet Storm
Packet Stormadded 2009/11/26 12:0 a.m.30 views

Symantec Altiris Deployment Solution ActiveX Control Arbitrary File Download and Execute.

This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/projects/Framework/ require 'msf/core' class Metasploit3 'Symantec...

6.8CVSS0.2AI score0.62601EPSS
Exploits5
Check Point Advisories
Check Point Advisoriesadded 2009/09/29 12:0 a.m.2 views

Symantec Altiris Deployment Solution ActiveX File Download (CVE-2009-3028)

The Symantec Altiris Deployment Solution software provides tools to deploy and configure software across hardware platforms and operating systems. A remote program execution vulnerability exists in Symantec Altiris Deployment Solution. The vulnerability is caused due to the Altiris.AeXNSPkgDL.1...

6.8CVSS7AI score0.62601EPSS
Exploits5
Rows per page
Query Builder