167 matches found
Altiris Deployment Solution Server DB Manager Detection
The remote service is running the DB Manager component of Altiris Deployment Solution. This service is used to remotely manage the Altiris database. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. include'deprecatednasllevel.inc'; include"compat.inc"; if description scriptid43831;...
Altiris Deployment Solution Server < 6.9.430 Multiple Vulnerabilities (SYM09-011)
The version of Altiris Deployment Solution installed on the remote host is reportedly affected by the following vulnerabilities : - DBManager authentication can by bypassed. A remote attacker could exploit this to execute arbitrary database queries. CVE-2009-3107 - The Aclient GUI has a privilege...
Symantec Altiris Deployment Solution ActiveX Control Buffer Overflow
This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require 'msf/core' class Metasploit3 'Symantec Altiris...
Symantec Multiple Products AeXNSConsoleUtilities Buffer Overflow (CVE-2009-3031; CVE-2009-3033)
Symantec Altiris Deployment Solution software provides tools to deploy software on desktops and servers. It runs on Windows platforms, offering Operating System OS deployment, configuration, software deployment across hardware platforms and OS types, among other tasks. This product can be used...
Symantec Altiris Deployment Solution ActiveX Control Buffer Overflow
This module exploits a stack buffer overflow in Symantec Altiris Deployment Solution. When sending an overly long string to RunCmd method of AeXNSConsoleUtilities.dll 6.0.0.1426 an attacker may be able to execute arbitrary code. This module requires Metasploit: https://metasploit.com/download...
Symantec多个产品AeXNSConsoleUtilities.dll ActiveX控件远程溢出漏洞
BUGTRAQ ID: 37092 CVECAN ID: CVE-2009-3033 Altiris Notification Server、Management Platform和Altiris Deployment Solution都是Symantec的网管和部署解决方案。 在初次连接到Altiris Deployment Solution等产品管理服务器的Web控制台时会安装一个Altiris eXpress NS Console Utilities...
Symantec AeXNSConsoleUtilities RunCmd buffer overflow
Added: 11/27/2009 CVE: CVE-2009-3033 BID: 37092 OSVDB: 60496 Background Symantec Altiris Deployment Solution provides tools to deploy software on desktops and servers. Problem A buffer overflow vulnerability in the AeXNSConsoleUtilities ActiveX control allows command execution when a user loads a...
Symantec AeXNSConsoleUtilities RunCmd buffer overflow
Added: 11/27/2009 CVE: CVE-2009-3033 BID: 37092 OSVDB: 60496 Background Symantec Altiris Deployment Solution provides tools to deploy software on desktops and servers. Problem A buffer overflow vulnerability in the AeXNSConsoleUtilities ActiveX control allows command execution when a user loads a...
Symantec AeXNSConsoleUtilities RunCmd buffer overflow
Added: 11/27/2009 CVE: CVE-2009-3033 BID: 37092 OSVDB: 60496 Background Symantec Altiris Deployment Solution provides tools to deploy software on desktops and servers. Problem A buffer overflow vulnerability in the AeXNSConsoleUtilities ActiveX control allows command execution when a user loads a...
Symantec Altiris Deployment Solution ActiveX Control Arbitrary File Download and Execute.
This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/projects/Framework/ require 'msf/core' class Metasploit3 'Symantec...
Symantec Multiple Products AeXNSConsoleUtilities Buffer Overflow
Added: 11/06/2009 CVE: CVE-2009-3031 BID: 36698 OSVDB: 59597 Background Symantec Altiris Deployment Solution provides tools to deploy software on desktops and servers. Problem A stack buffer overflow vulnerability in the AeXNSConsoleUtilities.dll ActiveX control allows remote attackers to execute...
Symantec Altiris Notification Server / Symantec Management Platform / Symantec Altiris Deployment Solution ActiveX buffer overflow
ConsoleUtilities ActiveX buffer overflow...
Symantec Altiris ConsoleUtilities ActiveX控件缓冲区溢出漏洞
Bugraq ID: 36698 CVE ID:CVE-2009-3031 Symantec Altiris Deployment Solution是自动化的操作系统部署解决方案,用于从统一的位置部署和管理服务器、桌面和笔记本等。 在初次访问Altiris Deployment Solution等产品管理服务器的管理WEB站点时会安装一个ActiveX控件AeXNSConsoleUtilities.dll,此函数"BrowseAndSaveFile"存在一个基于栈的缓冲区溢出: Name: ConsoleUtilities Class Vendor: Altiris, Inc. Type...
Stack overflow
Stack-based buffer overflow in the BrowseAndSaveFile method in the Altiris eXpress NS ConsoleUtilities ActiveX control 6.0.0.1846 in AeXNSConsoleUtilities.dll in Symantec Altiris Notification Server NS 6.0 before R12, Deployment Server 6.8 and 6.9 in Symantec Altiris Deployment Solution 6.9 SP3,...
CVE-2009-3031
Stack-based buffer overflow in the BrowseAndSaveFile method in the Altiris eXpress NS ConsoleUtilities ActiveX control 6.0.0.1846 in AeXNSConsoleUtilities.dll in Symantec Altiris Notification Server NS 6.0 before R12, Deployment Server 6.8 and 6.9 in Symantec Altiris Deployment Solution 6.9 SP3,...
Symantec Altiris产品ConsoleUtilities ActiveX控件栈溢出漏洞
BUGTRAQ ID: 36698 CVE ID: CVE-2009-3031 Symantec Altiris Deployment Solution是自动化的操作系统部署解决方案,用于从统一的位置部署和管理服务器、桌面和笔记本等。 在初次连接到Altiris Deployment Solution等产品管理服务器的Web控制台时会安装一个AeXNSConsoleUtilities.dll...
Symantec Altiris Deployment Solution ActiveX File Download (CVE-2009-3028)
The Symantec Altiris Deployment Solution software provides tools to deploy and configure software across hardware platforms and operating systems. A remote program execution vulnerability exists in Symantec Altiris Deployment Solution. The vulnerability is caused due to the Altiris.AeXNSPkgDL.1...
Symantec Altiris eXpress NS SC Download ActiveX control vulnerability
Added: 09/22/2009 BID: 36346 OSVDB: 57893 Background The Altiris eXpress NS SC Download ActiveX control is installed with several products, including Altiris Deployment Solution. Problem The Altiris eXpress NS SC Download ActiveX control allows remote files to be downloaded, saved to arbitrary...
CVE-2009-3178
Unspecified vulnerability in mm.exe in Symantec Altiris Deployment Solution 6.9 allows remote attackers to cause a denial of service via unknown attack vectors, as demonstrated by a certain module in VulnDisco Pack Professional 7.18, "Symantec Altiris Deployment Solution 6.9 DoS." NOTE: as of...
CVE-2009-3179
Multiple unspecified vulnerabilities in Symantec Altiris Deployment Solution 6.9 might allow remote attackers to execute arbitrary code via unknown client-side attack vectors, as demonstrated by a certain module in VulnDisco Pack Professional 7.17, as identified by 1 "Symantec Altiris Deployment...