10/31/07 - Updated threat table and KB number
11/28/07 - Updated solution build information
Symantecís Altiris Deployment Solution is vulnerable to an elevation of privilege attack.
|Altiris Deployment Solution||6.x||SP2||6.8.8400.49|
A directory traversal vulnerability exists in the Altiris Deployment solution. This vulnerability can allow read access to privileged system files.
Symantec engineers have verified and removed this option. An update is now available for download.
Download and installation instructions:
As part of normal best practices, Symantec strongly recommends:
SecurityFocus, http://www.securityfocus.com, has assigned a Bugtraq ID(BID) to this issue for inclusion in the SecurityFocus vulnerability data base. The BID assigned is 26266 which can be found at http://www.securityfocus.com/bid/26266.
Symantec would like to thank Manuel Santamarina Suarez, working with the iDefense Vulnerability Contributor Program (http://www.idefense.com), for reporting this issue.