Altiris Deployment Solution Missing Server Authentication Security Issue - Advisories

Software Inspectors

	Scan Online

	Personal (PSI)

	Network (NSI 2.0)

Solutions For

	Security Professionals

	Security Vendors

Free Solutions For

	Open Communities

	Journalists & Media

Secunia Advisories

	Search

	Historic Advisories

	Listed By Product

	Listed By Vendor

	Statistics / Graphs

	Secunia Research

	Report Vulnerability

	About Advisories

Virus Information

	Chronological List

	Last 10 Virus Alerts

	About Virus Information

Secunia Customers

	Customer Area

Altiris Deployment Solution Missing Server Authentication Security Issue

Secunia Advisory:	SA12944
Release Date:	2004-10-25
Last Update:	2004-11-08

Critical:	Moderately critical
Impact:	System access
Where:	From local network
Solution Status:	Vendor Workaround

Software:	Altiris Deployment Solution 5.x Altiris Deployment Solution 6.x



Description: Brian Gallagher has reported a security issue in Altiris Deployment Solution, which potentially can be exploited by malicious people to compromise certain systems. The problem is that the Altiris Deployment Solution client agents don't verify the authenticity of the Altiris Deployment Solution server system. This can be exploited by malicious people to install and execute arbitrary code on client systems by running a rogue Altiris Deployment Solution server system on the local network. The security issue has been reported in versions 5.x and 6.1sp1 and prior. Solution: This will be fixed in the upcoming version 6.5. The exposure can be limited by configuring the client to use a fixed IP address for the Altiris Deployment Solution server system, instead of relying on multicast to locate it. For more details see the vendors knowledge base article: http://www.altiris.com/support/forum/...44&refpara=532392&key=akb6859 Provided and/or discovered by: Brian Gallagher Changelog: 2004-10-26: Added link to vendor knowledge base article. 2004-11-08: Updated advisory with information about upcoming solution from vendor. Other References: Altiris Knowledge Base Article: http://www.altiris.com/support/forum/...44&refpara=532392&key=akb6859



Please note: The information that this Secunia Advisory is based on comes from a third party unless stated otherwise. Secunia collects, validates, and verifies all vulnerability reports issued by security research groups, vendors, and others.

7 Related Secunia Security Advisories

1. Symantec Altiris Deployment Solution Multiple Vulnerabilities

2. Symantec Altiris Deployment Solution AClient Password Disclosure

3. Symantec Altiris Deployment Solution Server Agent Privilege Escalation

4. Symantec Altiris Deployment Solution Directory Traversal and Privilege Escalation

5. Symantec Altiris Deployment Solution Aclient Log File Viewer Privilege Escalation

6. Altiris Deployment Solution AClient Password Protection Bypass

7. Altiris Deployment Solution AClient "View Log File" Privilege Escalation

Send Feedback to Secunia

If you have new information regarding this Secunia advisory or a product in our database, please send it to us using either our web form or email us at vuln@secunia.com. Ideas, suggestions, and other feedback are most welcome.

Secunia PSI
Scan | Patch | Track
Free Download

Secunia Poll

Most Popular Advisories

1.	Opera Multiple Vulnerabilities

2.	Sun Solaris NFSv4 Client Kernel Module Denial of Service

3.	Avaya CMS Solaris namefs Kernel Module Privilege Escalation

4.	Avaya CMS Solaris "snoop" Multiple Vulnerabilities

5.	Banner Management "id" SQL Injection Vulnerability

6.	Active PHP Bookmarks "id" SQL Injection Vulnerability

7.	Avaya CMS Solaris "picld" Denial of Service

8.	Ubuntu update for postfix

9.	Subdreamer Light Global Variables SQL Injection Vulnerability

10.	WS_FTP Home / Professional Format String Vulnerability