CVE-2005-1590

Name of the Vulnerable Software and Affected Versions Altiris Client Service for Windows version 6.0.88

Description The issue allows local users to bypass password protection and access the administrative interface. This can be achieved by finding and showing the hidden "Altiris Client Service" window, then disabling password protection and the "Hide client tray icon box" option. Afterwards, users can open the AClient tray icon and use the View Log File option to gain unauthorized access.

Recommendations For version 6.0.88, consider restricting access to the administrative interface until a fix is available. As a temporary workaround, disable the View Log File option in the AClient tray icon to minimize the risk of exploitation.