CVE-2009-3028

Symantec Altiris - RCE

Title source: llm

Description

The Altiris eXpress NS SC Download ActiveX control in AeXNSPkgDLLib.dll, as used in Symantec Altiris Deployment Solution 6.9.x, Notification Server 6.0.x, and Symantec Management Platform 7.0.x exposes an unsafe method, which allows remote attackers to force the download of arbitrary files and possibly execute arbitrary code via the DownloadAndInstall method.

Exploits (2)

exploitdb WORKING POC VERIFIED

by Metasploit · rubyremotewindows

https://www.exploit-db.com/exploits/16600

View Code ZIP pw:eip

metasploit WORKING POC EXCELLENT

by MC · rubypocwin

https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/browser/symantec_altirisdeployment_downloadandinstall.rb

View Code ZIP pw:eip

References (5)

[Exploit] http://www.securityfocus.com/bid/36346

[Third Party Advisory, VDB Entry] http://www.osvdb.org/57893

[Third Party Advisory] http://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&year=2009&suid=20090922_00

[Patch] http://www.symantec.com/business/support/index?page=content&id=TECH44885

[Vendor Advisory] http://secunia.com/advisories/36679

Scores

EPSS 0.6260

EPSS Percentile 98.4%

Details

Status published

Products (3)

symantec/altiris_deployment_solution 6.9 (5 CPE variants)

symantec/altiris_notification_server 6.0 (18 CPE variants)

symantec/management_platform 7.0 (7 CPE variants)

Published Mar 07, 2011

Tracked Since Feb 18, 2026