icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons_061

Altiris Deployment Solution < 6.8 SP2 Aclient Log File Viewer Local Privilege Escalation

Medium

Synopsis

The remote Windows host has a program that is prone to a local privilege escalation attack.

Description

The version of the Altiris Client Agent (aclient) installed on the remote host reportedly contains a flaw where local users can use the Log File Viewer to open or execute files on the affected host with SYSTEM privileges.

Solution

Upgrade to version 6.8 SP2 or higher.