Altiris Notification Server Agent GUI Local Privilege Escalation (KB 39159)

Altiris Notification Server Agent, also known as Altiris Agent, is installed on the remote host, allowing it to be managed by an Altiris Notification Server. The installed version of the Altiris Agent is reportedly vulnerable to a Shatter Attack involving its GUI that can allow local users to...

Symantec Altiris Notification Server Agent GUI Local Elevation of Privilege

SUMMARY A non-privileged user can leverage the Symantec Altiris Notification Server Agent Graphical User Interface GUI to gain privileged access to the system. Severity Medium Remote Access adjacent network | No ---|--- Local Access | Yes Authentication Required | Yes Exploit available | No...

Computer Associates Alert Notification Server opcode 23 buffer overflow

Added: 04/25/2008 CVE: CVE-2007-4620 BID: 28605 OSVDB: 44040 Background The Alert Notification Server is included with multiple Computer Associates products to provide notifications to console users. Problem The Alert Notification Server is affected by buffer overflow vulnerabilities in multiple...

Computer Associates Alert Notification Server opcode 23 buffer overflow

Added: 04/25/2008 CVE: CVE-2007-4620 BID: 28605 OSVDB: 44040 Background The Alert Notification Server is included with multiple Computer Associates products to provide notifications to console users. Problem The Alert Notification Server is affected by buffer overflow vulnerabilities in multiple...

Computer Associates Alert Notification Server opcode 23 buffer overflow

Added: 04/25/2008 CVE: CVE-2007-4620 BID: 28605 OSVDB: 44040 Background The Alert Notification Server is included with multiple Computer Associates products to provide notifications to console users. Problem The Alert Notification Server is affected by buffer overflow vulnerabilities in multiple...

Computer Associates Alert Notification Server opcode 23 buffer overflow

Added: 04/25/2008 CVE: CVE-2007-4620 BID: 28605 OSVDB: 44040 Background The Alert Notification Server is included with multiple Computer Associates products to provide notifications to console users. Problem The Alert Notification Server is affected by buffer overflow vulnerabilities in multiple...

CA Alert Notification服务多个RPC栈溢出漏洞

BUGTRAQ ID: 28605 CVECAN ID: CVE-2007-4620 Alert Notification Server是很多CA产品中都在使用的服务，用于向控制台用户提供通知。 Alert Notification服务在处理畸形格式的RPC请求时存在漏洞，远程攻击者可能利用此漏洞控制服务器。 Alert Notification服务以GUID...

CVE-2008-0716

The agent in Symantec Altiris Notification Server before 6.0 SP3 R7 allows local users to gain privileges via a "Shatter" style attack...

CVE-2008-0716

The agent in Symantec Altiris Notification Server before 6.0 SP3 R7 allows local users to gain privileges via a "Shatter" style attack...

CVE-2008-0716

The CVE-2008-0716 entry affects the Symantec Altiris Notification Server agent (AeXNSAgent) prior to version 6.0 SP3 R7. The vulnerability enables local privilege escalation via a "Shatter"-style attack, with an impact on confidentiality, integrity, and availability. NVD lists a base score of 6.8...

Altiris Notification Server Agent Local Privilege Escalation Vulnerabilities

Altiris Notification Server Agent, also known as Altiris Agent, is installed on the remote host, allowing it to be managed by an Altiris Notification Server. The installed version of the Altiris Agent is reportedly vulnerable to numerous Shatter Attacks that can allow local users to escalate thei...

Computer Associates Alert Notification Server buffer overflow

Added: 07/19/2007 CVE: CVE-2007-3825 BID: 24947 OSVDB: 36096 Background The Alert Notification Server is included with multiple Computer Associates products to provide notifications to console users. Problem The Alert Notification Server is affected by buffer overflow vulnerabilities in multiple...

Computer Associates Alert Notification Server buffer overflow

Added: 07/19/2007 CVE: CVE-2007-3825 BID: 24947 OSVDB: 36096 Background The Alert Notification Server is included with multiple Computer Associates products to provide notifications to console users. Problem The Alert Notification Server is affected by buffer overflow vulnerabilities in multiple...

Computer Associates Alert Notification Server buffer overflow

Added: 07/19/2007 CVE: CVE-2007-3825 BID: 24947 OSVDB: 36096 Background The Alert Notification Server is included with multiple Computer Associates products to provide notifications to console users. Problem The Alert Notification Server is affected by buffer overflow vulnerabilities in multiple...

CA eTrust Integrated Threat Management multiple buffer overflow

Buffer overflows in Alert Notification Server RPC interface...

iDefense Security Advisory 07.17.07: Computer Associates Alert Notification Server Multiple Buffer Overflow Vulnerabilities

Computer Associates Alert Notification Server Multiple Buffer Overflow Vulnerabilities iDefense Security Advisory 07.17.07 http://labs.idefense.com/intelligence/vulnerabilities/ Jul 17, 2007 I. BACKGROUND Computer Associates Alert Notification Server is used by several CA products, including eTru...

Stack overflow

Multiple stack-based buffer overflows in the RPC implementation in alert.exe before 8.0.255.0 in CA formerly Computer Associates Alert Notification Server, as used in Threat Manager for the Enterprise, Protection Suites, certain BrightStor ARCserve products, and BrightStor Enterprise Backup, allo...

CVE-2007-3825

CA Alert Notification Server (alert.exe) is affected by multiple stack-based buffer overflows in its RPC handling, prior to version 8.0.255.0, used across Threat Manager for the Enterprise, Protection Suites, BrightStor ARCserve Backup, and BrightStor Enterprise Backup. The vulnerabilities allow ...

CVE-2007-3825

Multiple stack-based buffer overflows in the RPC implementation in alert.exe before 8.0.255.0 in CA formerly Computer Associates Alert Notification Server, as used in Threat Manager for the Enterprise, Protection Suites, certain BrightStor ARCserve products, and BrightStor Enterprise Backup, allo...

Ipswitch WS_FTP Server 5.04 multiple arbitrary code execution vulnerabilities

Synopsis: Ipswitch WSFTP Server 5.04 multiple arbitrary code execution vulnerabilities Michal Bucko sapheal, HACKPL. I. BACKGROUND "..WSFTP Server is commonly used for setting up an FTP server that allows users to login, download and upload files...", note from Ipswitch web site. II. DESCRIPTION...