NVD

Id
50250  
Name
CVE-2009-3033  
Description
Buffer overflow in the RunCmd method in the Altiris eXpress NS Console Utilities ActiveX control in AeXNSConsoleUtilities.dll in the web console in Symantec Altiris Deployment Solution 6.9.x, Altiris Notification Server 6.0.x, and Management Platform 7.0.x allows remote attackers to execute arbitrary code via a long string in the second argument.  
Reject
 
CVSS Version
2  
CVSS Score
9.3  
Severity
High  
CVSS Base Score
9.3  
CVSS Impact Subscore
10  
CVSS Exploit Subscore
8.6  
CVSS Vector
(AV:N/AC:M/Au:N/C:C/I:C/A:C)  
Pub Date
2017-01-07  
Published
2009-11-25  
Modified Date
2013-02-06  
Seq
2009-3033  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
254365 50250 CVE-2009-3033 37092  View
254366 50250 CVE-2009-3033 http://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&year=2009&suid=20091124_00  View
254367 50250 CVE-2009-3033 ADV-2009-3328  View
254368 50250 CVE-2009-3033 symantec-console-utilities-bo(54415)  View
254369 50250 CVE-2009-3033 https://kb.altiris.com/article.asp?article=50072&p=1  View
254370 50250 CVE-2009-3033 https://kb.altiris.com/article.asp?article=50279&p=1  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
45258 JVNDB-2009-006265 Symantec Altiris Deployment Solution などの Web コンソールにおけるバッファオーバーフローの脆弱性 Symantec Altiris Deployment Solution、Altiris Notification Server、および Management Platform の Web コンソールの AeXNSConsoleUtilities.dll の Altiris eXpress NS Console Utilities ActiveX コントロールの RunCmd メソッドには、バッファオーバーフローの脆弱性が存在します。 CVE-2009-3033 40464 CVE-2009-3033 50250 9.3 http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-006265.html 2009-11-24 2012-12-20 View