Symantec Altiris Notification Server — known CVE vulnerabilities
Every CVE whose affected-product data names Symantec Altiris Notification Server, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (6)
CVE-2009-3031 — CVSS 9.3 (critical): Stack-based buffer overflow in the BrowseAndSaveFile method in the Altiris eXpress NS ConsoleUtilities ActiveX control 6.0.0.1846 in…
CVE-2009-3033 — CVSS 9.3 (critical): Buffer overflow in the RunCmd method in the Altiris eXpress NS Console Utilities ActiveX control in AeXNSConsoleUtilities.dll in the web…
CVE-2008-0716 — CVSS 6.8 (medium): The agent in Symantec Altiris Notification Server before 6.0 SP3 R7 allows local users to gain privileges via a "Shatter" style attack.
CVE-2008-2794 — CVSS 6.8 (medium): Unspecified vulnerability in the GUI in Symantec Altiris Notification Server Agent 6.x before 6.0 SP3 R8 allows local users to gain…
CVE-2009-3028 — CVSS 6.8 (medium): The Altiris eXpress NS SC Download ActiveX control in AeXNSPkgDLLib.dll, as used in Symantec Altiris Deployment Solution 6.9.x…
CVE-2009-3035 — CVSS 4.3 (medium): The web console in Symantec Altiris Notification Server 6.0.x before 6.0 SP3 R12 uses a hardcoded key that can decrypt SQL Server…