CVE-2008-2286

Symantec Altiris Deployment Solution 6.8.x-6.9.x - SQL Injection via Notification Packet String Fields

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 2 public exploits for CVE-2008-2286. PoCs published by Metasploit, Brett Moore, 3v0lver, including Metasploit module exploits/windows/misc/altiris_ds_sqli.

AI-analyzed exploit summary This Metasploit module exploits a SQL injection vulnerability in Symantec Altiris Deployment Solution 6.8 to 6.9.164. It enables xp_cmdshell, retrieves a payload via TFTP, and executes it to achieve remote code execution.

Description

SQL injection vulnerability in axengine.exe in Symantec Altiris Deployment Solution 6.8.x and 6.9.x before 6.9.176 allows remote attackers to execute arbitrary SQL commands via unspecified string fields in a notification packet.

Exploits (2)

exploitdb WORKING POC VERIFIED
by Metasploit · rubyremotewindows
https://www.exploit-db.com/exploits/29552

This Metasploit module exploits a SQL injection vulnerability in Symantec Altiris Deployment Solution 6.8 to 6.9.164. It enables xp_cmdshell, retrieves a payload via TFTP, and executes it to achieve remote code execution.

Classification
Working Poc 100%
Attack Type
Sqli
Complexity
Moderate
Reliability
Reliable
Target: Symantec Altiris Deployment Solution 6.8 to 6.9.164
No auth needed
Prerequisites: Target system must have a TFTP client available · Network access to the target system on port 402
devstral-2 · analyzed Feb 16, 2026 Full analysis →
metasploit WORKING POC NORMAL
by Brett Moore, 3v0lver · rubypocwin
https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/misc/altiris_ds_sqli.rb

This Metasploit module exploits a SQL injection vulnerability in Symantec Altiris Deployment Solution 6.8 to 6.9.164 by sending crafted 'UpdateComputer' requests to enable xp_cmdshell, retrieve a payload via TFTP, and execute it for remote code execution.

Classification
Working Poc 100%
Attack Type
Sqli
Complexity
Moderate
Reliability
Reliable
Target: Symantec Altiris Deployment Solution 6.8 to 6.9.164
No auth needed
Prerequisites: Target system must have a TFTP client available · Network access to the target on port 402
devstral-2 · analyzed Feb 19, 2026 Full analysis →

References (12)

Core 12
Core References
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/29198
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/42436
Vendor Advisory vdb-entry x_refsource_vupen
http://www.vupen.com/english/advisories/2008/1542/references
Mailing List vendor-advisory x_refsource_hp
http://marc.info/?l=bugtraq&m=122167472229965&w=2
Third Party Advisory x_refsource_misc
http://www.zerodayinitiative.com/advisories/ZDI-08-024/
Third Party Advisory, VDB Entry mailing-list x_refsource_bugtraq
http://www.securityfocus.com/archive/1/492127/100/0/threaded
Patch, Vendor Advisory x_refsource_confirm
http://www.symantec.com/avcenter/security/Content/2008.05.14a.html
Exploit, Third Party Advisory exploit x_refsource_exploit-db
http://www.exploit-db.com/exploits/29552
Third Party Advisory, VDB Entry mailing-list x_refsource_bugtraq
http://www.securityfocus.com/archive/1/492229/100/0/threaded
Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb
http://osvdb.org/show/osvdb/45313
Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack
http://www.securitytracker.com/id?1020024
Vendor Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/30261

Scores

EPSS 0.3268
EPSS Percentile 98.1%

Details

CWE
CWE-89
Status published
Products (2)
symantec/altiris_deployment_solution 6.8
symantec/altiris_deployment_solution 6.9
Published May 18, 2008
Tracked Since Feb 18, 2026