CVE-2008-1754

medium

Description

Symantec Altiris Deployment Solution before 6.9.164 stores the Deployment Solution Agent (aka AClient) password in cleartext in memory, which allows local users to obtain sensitive information by dumping the AClient.exe process memory.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/41771

http://www.vupen.com/english/advisories/2008/1197/references

http://www.securitytracker.com/id?1019825

http://www.securityfocus.com/bid/28707

http://www.osvdb.org/44388

http://securityresponse.symantec.com/avcenter/security/Content/2008.04.10.html

http://secunia.com/advisories/29771

Details

Source: Mitre, NVD

Published: 2008-04-11

Updated: 2025-04-09

Risk Information

CVSS v2

Base Score: 1.7

Vector: CVSS2#AV:L/AC:L/Au:S/C:P/I:N/A:N

Severity: Low

CVSS v3

Base Score: 5.5

Vector: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

Severity: Medium

EPSS

EPSS: 0.00083

Detections

Analytics