KLA10058 WLF vulnerability in Altiris Notification Server

An unspecified vulnerability was found in the Symantec products. By exploiting this vulnerability malicious users can download and write local files. This vulnerability can be exploited from the network at a point related to eXpress NS SC Download. Original advisories Symantec security advisory...

CA Multiple Products Alert Notification Server Buffer Overflow (CVE-2007-4620)

Computer Associates, or CA, develop and sell various software to enterprise users. Some CA products, such as Threat Manager, Protection Suites, and BrightStor ARCserve Backup, share a set of common components. One of these common component is Alert Notification Server. This component runs as a...

Symantec Altiris Notification Server Version Detection

This script detects the installed version of Symantec Altiris Notification Server and sets the result in KB. OpenVAS Vulnerability Test $Id: gbsymantecaltirisnsdetect.nasl 5372 2017-02-20 16:26:11Z cfi $ Symantec Altiris Notification Server Version Detection Authors: Rachana Shetty Copyright:...

Symantec Altiris Notification Server Version Detection

This script detects the installed version of Symantec Altiris Notification Server. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescriptio...

Symantec Altiris NS Key Unauthorized Access Vulnerability

This host is installed with Symantec Altiris Notification Server and is prone to unauthorized access vulnerability. OpenVAS Vulnerability Test $Id: gbsymantecaltirisnsunauthaccessvuln.nasl 6000 2017-04-21 11:07:29Z cfi $ Symantec Altiris NS Key Unauthorized Access Vulnerability Authors: Rachana...

CVE-2009-3035

The web console in Symantec Altiris Notification Server 6.0.x before 6.0 SP3 R12 uses a hardcoded key that can decrypt SQL Server credentials and certain discovery credentials, and stores this key on the Notification Server machine, which allows local users to obtain sensitive information and...

Hardcoded credentials

The web console in Symantec Altiris Notification Server 6.0.x before 6.0 SP3 R12 uses a hardcoded key that can decrypt SQL Server credentials and certain discovery credentials, and stores this key on the Notification Server machine, which allows local users to obtain sensitive information and...

CVE-2009-3035

Symantec Altiris Notification Server 6.0.x prior to SP3 R12 stores a static encryption key on the server to encrypt credentials used for discovery and SQL Server access. The hardcoded key can decrypt these credentials, enabling local users to obtain sensitive information and, if decrypted credent...

CVE-2009-3035

The web console in Symantec Altiris Notification Server 6.0.x before 6.0 SP3 R12 uses a hardcoded key that can decrypt SQL Server credentials and certain discovery credentials, and stores this key on the Notification Server machine, which allows local users to obtain sensitive information and...

Altiris Notification Server Static Encryption Key (KB46763)

The remote Windows host is running Symantec Altiris Notification Server 6.0 earlier than SP3 R12. Such versions are potentially affected by a local information disclosure vulnerability because the application uses a static encryption key for encrypted credentials entered by an administrator. C...

Symantec Altiris Notification Server 6.0 < SP3 R12 Static Encryption Key

Binary data 5330.prm...

Symantec Altiris Notification Server 6.x Static Encryption Key

SUMMARY Symantecs Altiris Notification Server 6.0.x web console stores a static encryption key for encrypted credentials entered by the administrator. These credentials include ones used to enumerate the computers within a windows domain during discovery sessions allowing dissemination of Altiris...

Symantec多个产品AeXNSConsoleUtilities.dll ActiveX控件远程溢出漏洞

BUGTRAQ ID: 37092 CVECAN ID: CVE-2009-3033 Altiris Notification Server、Management Platform和Altiris Deployment Solution都是Symantec的网管和部署解决方案。 在初次连接到Altiris Deployment Solution等产品管理服务器的Web控制台时会安装一个Altiris eXpress NS Console Utilities...

CVE-2009-3031

Stack-based buffer overflow in the BrowseAndSaveFile method in the Altiris eXpress NS ConsoleUtilities ActiveX control 6.0.0.1846 in AeXNSConsoleUtilities.dll in Symantec Altiris Notification Server NS 6.0 before R12, Deployment Server 6.8 and 6.9 in Symantec Altiris Deployment Solution 6.9 SP3,...

Symantec Altiris产品ConsoleUtilities ActiveX控件栈溢出漏洞

BUGTRAQ ID: 36698 CVE ID: CVE-2009-3031 Symantec Altiris Deployment Solution是自动化的操作系统部署解决方案，用于从统一的位置部署和管理服务器、桌面和笔记本等。 在初次连接到Altiris Deployment Solution等产品管理服务器的Web控制台时会安装一个AeXNSConsoleUtilities.dll...

Code injection

Unspecified vulnerability in the GUI in Symantec Altiris Notification Server Agent 6.x before 6.0 SP3 R8 allows local users to gain privileges via unknown attack vectors...

CVE-2008-2794

Unspecified vulnerability in the GUI in Symantec Altiris Notification Server Agent 6.x before 6.0 SP3 R8 allows local users to gain privileges via unknown attack vectors...

CVE-2008-2794

Unspecified vulnerability in the GUI in Symantec Altiris Notification Server Agent 6.x before 6.0 SP3 R8 allows local users to gain privileges via unknown attack vectors...

CVE-2008-2794

Unspecified vulnerability in the GUI in Symantec Altiris Notification Server Agent 6.x before 6.0 SP3 R8 allows local users to gain privileges via unknown attack vectors...

CVE-2008-2794

CVE-2008-2794 describes a local privilege escalation affecting the Symantec Altiris Notification Server Agent GUI. The vulnerability is tied to Altiris Notification Server Agent 6.x (before 6.0 SP3 R8) and allows local users to gain privileges via unspecified attack vectors. The connected sources...