Vulnerability Details CVE-2007-3874
Directory traversal vulnerability in the tftp/mftp daemon in the PXE server component (pxemtftp.exe) in Symantec Altiris Deployment Solution 6.x before 6.8.380.0 allows remote attackers to read arbitrary files via unspecified vectors.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.005
EPSS Ranking 62.8%
CVSS Severity
CVSS v2 Score 7.8
References
- http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=619
- http://secunia.com/advisories/27412
- http://www.securityfocus.com/bid/26266
- http://www.securitytracker.com/id?1018875
- http://www.symantec.com/avcenter/security/Content/2007.10.31.html
- http://www.vupen.com/english/advisories/2007/3673
- https://exchange.xforce.ibmcloud.com/vulnerabilities/38178
- http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=619
- http://secunia.com/advisories/27412
- http://www.securityfocus.com/bid/26266
- http://www.securitytracker.com/id?1018875
- http://www.symantec.com/avcenter/security/Content/2007.10.31.html
- http://www.vupen.com/english/advisories/2007/3673
- https://exchange.xforce.ibmcloud.com/vulnerabilities/38178
Products affected by CVE-2007-3874
-
cpe:2.3:a:altiris:deployment_solution:6.0
-
cpe:2.3:a:altiris:deployment_solution:6.8