Lucene search
K
SymantecAltiris Notification Server

6 matches found

CVE
CVE
added 2009/11/25 4:0 p.m.67 views

CVE-2009-3033

CVE-2009-3033 describes a stack-based buffer overflow in the RunCmd method of AeXNSConsoleUtilities.dll (Altiris eXpress NS Console Utilities ActiveX control) used by Symantec Altiris Deployment Solution, Altiris Notification Server, and Symantec Management Platform. The vulnerability allows remo...

9.3CVSS7.6AI score0.39967EPSS
CVE
CVE
added 2011/03/07 8:0 p.m.65 views

CVE-2009-3028

The CVE-2009-3028 entry concerns Symantec Altiris components (AeXNSPkgDLLib.dll) used in Altiris Deployment Solution 6.9.x, Notification Server 6.0.x, and Management Platform 7.0.x. The AeXNSPkgDL.1 ActiveX control exposes an unsafe method, DownloadAndInstall, which can be abused to force the dow...

6.8CVSS7.7AI score0.42598EPSS
CVE
CVE
added 2009/11/03 4:0 p.m.62 views

CVE-2009-3031

The CVE-2009-3031 issue is a stack-based buffer overflow in the BrowseAndSaveFile() method of the AeXNSConsoleUtilities.dll (6.0.0.1846) ActiveX control used by Symantec Altiris Notification Server, Deployment Solution, and SMP . A long string in the second argument can lead to remote code execut...

9.3CVSS7.7AI score0.45435EPSS
CVE
CVE
added 2010/02/02 4:25 p.m.57 views

CVE-2009-3035

Symantec Altiris Notification Server 6.0.x prior to SP3 R12 stores a static encryption key on the server to encrypt credentials used for discovery and SQL Server access. The hardcoded key can decrypt these credentials, enabling local users to obtain sensitive information and, if decrypted credent...

4.3CVSS7.3AI score0.00375EPSS
CVE
CVE
added 2008/06/20 10:0 a.m.47 views

CVE-2008-2794

CVE-2008-2794 describes a local privilege escalation affecting the Symantec Altiris Notification Server Agent GUI. The vulnerability is tied to Altiris Notification Server Agent 6.x (before 6.0 SP3 R8) and allows local users to gain privileges via unspecified attack vectors. The connected sources...

6.8CVSS6.4AI score0.00313EPSS
CVE
CVE
added 2008/02/12 1:0 a.m.42 views

CVE-2008-0716

The CVE-2008-0716 entry affects the Symantec Altiris Notification Server agent (AeXNSAgent) prior to version 6.0 SP3 R7. The vulnerability enables local privilege escalation via a "Shatter"-style attack, with an impact on confidentiality, integrity, and availability. NVD lists a base score of 6.8...

6.8CVSS6.5AI score0.00295EPSS