Vulnerability Description
Symantec Altiris Deployment Solution 6.8.x and 6.9.x before 6.9.176 has insufficient access control for deletion and modification of registry keys, which allows local users to cause a denial of service or obtain sensitive information.
CVSS Score
LOW
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Symantec | Altiris Deployment Solution | 6.8 |
Related Weaknesses (CWE)
References
- http://marc.info/?l=bugtraq&m=122167472229965&w=2
- http://secunia.com/advisories/30261
- http://www.securityfocus.com/bid/29196
- http://www.securitytracker.com/id?1020024
- http://www.symantec.com/avcenter/security/Content/2008.05.14a.htmlPatch
- http://www.vupen.com/english/advisories/2008/1542/references
- https://exchange.xforce.ibmcloud.com/vulnerabilities/42441
- http://marc.info/?l=bugtraq&m=122167472229965&w=2
- http://secunia.com/advisories/30261
- http://www.securityfocus.com/bid/29196
- http://www.securitytracker.com/id?1020024
- http://www.symantec.com/avcenter/security/Content/2008.05.14a.htmlPatch
- http://www.vupen.com/english/advisories/2008/1542/references
- https://exchange.xforce.ibmcloud.com/vulnerabilities/42441
FAQ
What is CVE-2008-2288?
CVE-2008-2288 is a vulnerability with a CVSS score of 3.6 (LOW). Symantec Altiris Deployment Solution 6.8.x and 6.9.x before 6.9.176 has insufficient access control for deletion and modification of registry keys, which allows local users to cause a denial of servic...
How severe is CVE-2008-2288?
CVE-2008-2288 has been rated LOW with a CVSS base score of 3.6/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2008-2288?
Check the references section above for vendor advisories and patch information. Affected products include: Symantec Altiris Deployment Solution.