PT-2008-2334 · Symantec+1 · Symantec Altiris Notification Server+1

Published

2008-02-12

Updated

2011-03-08

CVE-2008-0716

CVSS v2.0

6.8

Medium

Vector

AV:L/AC:L/Au:S/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions Symantec Altiris Notification Server versions prior to 6.0 SP3 R7

Description The issue allows local users to gain privileges via a "Shatter" style attack, which is a type of attack that exploits a vulnerability in the way Windows handles messages between applications. This can potentially lead to elevated access.

Recommendations For versions prior to 6.0 SP3 R7, update to Symantec Altiris Notification Server 6.0 SP3 R7 or later to resolve the issue.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2008-0716

Affected Products

Symantec Altiris Notification Server

Windows

PT-2008-2334 · Symantec+1 · Symantec Altiris Notification Server+1

CVE-2008-0716

Related Identifiers

Affected Products

References · 6