CVE-2008-1754

EPSS 0.08%
Veröffentlicht 11.04.2008 21:05:00
Zuletzt bearbeitet 09.04.2025 00:30:58
Quelle cve@mitre.org
CVE-Watchlists
Login
Unerledigt
Login

Symantec Altiris Deployment Solution before 6.9.164 stores the Deployment Solution Agent (aka AClient) password in cleartext in memory, which allows local users to obtain sensitive information by dumping the AClient.exe process memory.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 0 Referenzen 10

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Symantec ≫ Altiris Deployment Solution Updatesp2 Version <= 6.8

Symantec ≫ Altiris Deployment Solution Version6.8 Updatesp1

Symantec ≫ Altiris Deployment Solution Version6.8.380

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.08%	0.213

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	1.7	3.1	2.9	AV:L/AC:L/Au:S/C:P/I:N/A:N

http://secunia.com/advisories/29771

Vendor Advisory

http://securityresponse.symantec.com/avcenter/security/Content/2008.04.10.html

Patch

http://www.osvdb.org/44388

http://www.securityfocus.com/bid/28707

http://www.securitytracker.com/id?1019825

http://www.vupen.com/english/advisories/2008/1197/references

https://exchange.xforce.ibmcloud.com/vulnerabilities/41771

https://nvd.nist.gov/vuln/detail/CVE-2008-1754

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2008-1754

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2008-1754

EUVD