CVE-2008-1754

EPSS 0.08%
Published 11.04.2008 21:05:00
Last modified 09.04.2025 00:30:58
Source cve@mitre.org
Teams watchlist Login
Open Login

Symantec Altiris Deployment Solution before 6.9.164 stores the Deployment Solution Agent (aka AClient) password in cleartext in memory, which allows local users to obtain sensitive information by dumping the AClient.exe process memory.

Affected products Warnungen 0 Metrics 2 CWE 0 References 10

Data is provided by the National Vulnerability Database (NVD)

Symantec ≫ Altiris Deployment Solution Updatesp2 Version <= 6.8

Symantec ≫ Altiris Deployment Solution Version6.8 Updatesp1

Symantec ≫ Altiris Deployment Solution Version6.8.380

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	0.08%	0.213

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	1.7	3.1	2.9	AV:L/AC:L/Au:S/C:P/I:N/A:N

http://secunia.com/advisories/29771

Vendor Advisory

http://securityresponse.symantec.com/avcenter/security/Content/2008.04.10.html

Patch

http://www.osvdb.org/44388

http://www.securityfocus.com/bid/28707

http://www.securitytracker.com/id?1019825

http://www.vupen.com/english/advisories/2008/1197/references

https://exchange.xforce.ibmcloud.com/vulnerabilities/41771

https://nvd.nist.gov/vuln/detail/CVE-2008-1754

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2008-1754

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2008-1754

EUVD