CVE-2008-2287

Symantec Altiris Deployment Solution 6.8.x and 6.9.x before 6.9.176 does not properly protect the install directory, which might allow local users to gain privileges by replacing an application component with a Trojan horse.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
7.2 UNKNOWN
LOCAL
LOW
AV:L/AC:L/Au:N/C:C/I:C/A:C
mitreCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 21%
VendorProductVersion
symantecaltiris_deployment_solution
6.8
symantecaltiris_deployment_solution
6.9
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://marc.info/?l=bugtraq&m=122167472229965&w=2
http://marc.info/?l=bugtraq&m=122167472229965&w=2
http://secunia.com/advisories/30261
http://www.securityfocus.com/bid/29197
http://www.securitytracker.com/id?1020024
http://www.symantec.com/avcenter/security/Content/2008.05.14a.html
http://www.vupen.com/english/advisories/2008/1542/references
https://exchange.xforce.ibmcloud.com/vulnerabilities/42442
http://marc.info/?l=bugtraq&m=122167472229965&w=2
http://marc.info/?l=bugtraq&m=122167472229965&w=2
http://secunia.com/advisories/30261
http://www.securityfocus.com/bid/29197
http://www.securitytracker.com/id?1020024
http://www.symantec.com/avcenter/security/Content/2008.05.14a.html
http://www.vupen.com/english/advisories/2008/1542/references
https://exchange.xforce.ibmcloud.com/vulnerabilities/42442