Vulnonym.org

CVE-2008-2287 - Unedifying Beat

Description

Symantec Altiris Deployment Solution 6.8.x and 6.9.x before 6.9.176 does not properly protect the install directory which might allow local users to gain privileges by replacing an application component with a Trojan horse.

Reference

http://www.symantec.com/avcenter/security/Content/2008.05.14a.html http://www.securityfocus.com/bid/29197 http://secunia.com/advisories/30261 http://www.securitytracker.com/id?1020024 http://marc.info/?l=bugtraq&m=122167472229965&w=2 http://www.vupen.com/english/advisories/2008/1542/references https://exchange.xforce.ibmcloud.com/vulnerabilities/42442