Facebook Google Plus Twitter LinkedIn YouTube RSS Menu Search Resource - BlogResource - WebinarResource - ReportResource - Eventicons_066 icons_067icons_068icons_069icons_070

Altiris AClient < 6.8.380 Multiple Local Vulnerabilities

High

Synopsis

The remote Windows host has a program that is prone to multiple local attacks.

Description

The version of the Altiris Client Agent (aclient) installed on the remote host contains a flaw in its browser option where a local user can open or execute files on the affected host with SYSTEM privileges. It also contains a directory traversal vulnerability that allows a local user to read privileged system files.

Solution

Upgrade to version 6.8.380 or higher.