Peaches Posted November 4, 2009 Report Share Posted November 4, 2009 Symantec Altiris ConsoleUtilities ActiveX Control Buffer OverflowHighly critical Software:Altiris Deployment Solution 6.xAltiris Notification Server 6.xSymantec Altiris ConsoleUtilities ActiveX Control 6.xSymantec Management Platform 7.x Description:A vulnerability has been reported in the Symantec Altiris ConsoleUtilities ActiveX control, which can be exploited by malicious people to compromise a user's system.The vulnerability is caused due to a boundary error in the ConsoleUtilities ActiveX control (AeXNSConsoleUtilities.dll). This can be exploited to cause a stack-based buffer overflow via an overly long argument passed to the "BrowseAndSaveFile()" method.Successful exploitation allows execution of arbitrary code.The vulnerability is reported in AeXNSConsoleUtilities.dll version 6.0.0.1846, Symantec Altiris Deployment Solution 6.9.x, Symantec Altiris Notification Server 6.0.x, and Symantec Management Platform 7.0.x. Details at secunia advisories - http://secunia.com/advisories/37229/ Quote Link to post Share on other sites
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.