Altiris ConsoleUtilities ActiveX RunCmd Method Overflow
High Nessus Plugin ID 42977
SynopsisThe remote Windows host has an ActiveX control with a buffer overflow vulnerability.
DescriptionA vulnerable version of the Altiris ConsoleUtilities ActiveX control is installed on the remote host. This control comes with Altiris Deployment Solution, Altiris Notification Server, and Symantec Management Platform. There is a stack-based buffer overflow in the 'RunCmd()' function. A remote attacker could exploit this by tricking a user into requesting a maliciously crafted web page, which could lead to arbitrary code execution.
SolutionRemove all copies of the vulnerable control from this host, and apply the relevant hotfix referenced in the vendor's advisory.