CVE-2009-3110
Symantec Altiris Deployment Solution 6.9.x - Race Condition in File Transfer Functionality
Title source: llmDescription
Race condition in the file transfer functionality in Symantec Altiris Deployment Solution 6.9.x before 6.9 SP3 Build 430 allows remote attackers to read sensitive files and prevent client updates by connecting to the file transfer port before the expected client does.
References (4)
Core 4
Core References
Vendor Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/36502
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/36113
Third Party Advisory x_refsource_confirm
http://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&year=2009&suid=20090826_00
Third Party Advisory, VDB Entry vdb-entry
x_refsource_sectrack
http://www.securitytracker.com/id?1022779
Scores
EPSS
0.0066
EPSS Percentile
71.4%
Details
CWE
CWE-362
Status
published
Products (4)
symantec/altiris_deployment_solution
6.9 (2 CPE variants)
symantec/altiris_deployment_solution
6.9.164
symantec/altiris_deployment_solution
6.9.176
symantec/altiris_deployment_solution
6.9.355 (2 CPE variants)
Published
Sep 08, 2009
Tracked Since
Feb 18, 2026