CVE-2009-3107

Name of the Vulnerable Software and Affected Versions: Symantec Altiris Deployment Solution versions 6.9.x before 6.9 SP3 Build 430

Description: The issue is related to improper access restriction to the listening port for the DBManager service. This allows remote attackers to bypass authentication and modify tasks or the Altiris Database via a connection to this service.

Recommendations: For Symantec Altiris Deployment Solution versions 6.9.x before 6.9 SP3 Build 430, update to 6.9 SP3 Build 430 or later to resolve the issue. As a temporary workaround, consider restricting access to the DBManager service to minimize the risk of exploitation.