• Product Information
• Security Products Overview
• Juniper Networks ISG Series
• IDP Demo
• Product Poster & Z-Card 

Title: Multiple Symantec Altiris Products ActiveX Control Buffer Overflow Vulnerability

Severity: HIGH

Description:

Symantec Altiris Deployment Solution is software for deploying and managing servers, desktops, notebooks, thin clients, and handheld devices from a centralized location. Altiris Notification Server and its agents provide core components used by each Altiris solution and support the entire Altiris Infrastructure.

Symantec Altiris Notification Server with Symantec Management Platform and Altiris Deployment Solution are prone to a buffer-overflow vulnerability because the applications use an ActiveX control provided by 'AeXNSConsoleUtilities.dll' that fails to properly validate user-supplied input to the 'BrowseandSaveFile()' method. The vulnerable control is identified by the following CLSID:

B44D252D-98FC-4D5C-948C-BE868392A004

An attacker can exploit this issue to execute arbitrary code in the context of the application using the ActiveX control (typically Internet Explorer). Failed attacks will likely cause denial-of-service conditions.

Affected Products:

• Symantec Altiris Deployment Solution 6.9
• Symantec Altiris Deployment Solution 6.9 SP1
• Symantec Altiris Deployment Solution 6.9 SP3 Build 430
• Symantec Altiris Deployment Solution 6.9.164
• Symantec Altiris Deployment Solution 6.9.176
• Symantec Altiris Deployment Solution 6.9.355
• Symantec Altiris Deployment Solution 6.9.355 SP1
• Symantec Altiris Notification Server 6.0
• Symantec Altiris Notification Server 6.0 SP1
• Symantec Altiris Notification Server 6.0 SP2
• Symantec Altiris Notification Server 6.0 SP3
• Symantec Altiris Notification Server 6.0 SP3 R7
• Symantec Management Platform 7.0
• Symantec Management Platform 7.0 SP1

References:

• Microsoft: Microsoft Knowledge Base Article 240797
• Nikolas Sotiriu: Symantec ConsoleUtilities ActiveX Control Buffer Overflow
• Symantec: Security Advisories Relating to Symantec Products - Symantec Altiris Deployment
• Symantec: Symantec Homepage
• Symantec: Vulnerability in the Altiris Deployment Server Web Console
• Symantec: Vulnerability in the Altiris eXpress NS Console Utilities ActiveX control

Juniper Networks provides this content via a wide variety of sources and production methods. If notified of errors or omissions in the content of this page, Juniper Networks, at its discretion, will modify or remove the page or leave the content as is, depending on various factors including but not limited to the reputation and authority of the party providing the notification. Please use the contact information displayed elsewhere on this page to report any errors or omissions regarding the content on this page.