CVE-2013-5008

Name of the Vulnerable Software and Affected Versions Symantec Management Platform versions 7.0 through 7.1 before 7.1 SP2 Mp1.1v7 rollup

Description The issue allows local users to obtain sensitive information or cause a denial of service by exploiting the use of the same registry-entry encryption key across different customers' installations. This affects the agent and task-agent components in certain Altiris products.

Recommendations For Symantec Management Platform versions 7.0 through 7.1 before 7.1 SP2 Mp1.1v7 rollup, update to version 7.1 SP2 Mp1.1v7 rollup or later to resolve the issue.