icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons_061

Altiris AClient < 6.8.380 Multiple Local Vulnerabilities

High

Synopsis

The remote Windows host has a program that is prone to multiple local attacks.

Description

The version of the Altiris Client Agent (aclient) installed on the remote host contains a flaw in its browser option where a local user can open or execute files on the affected host with SYSTEM privileges. It also contains a directory traversal vulnerability that allows a local user to read privileged system files.

Solution

Upgrade to version 6.8.380 or higher.