Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The Altiris eXpress NS SC Download ActiveX control in AeXNSPkgDLLib.dll, as used in Symantec Altiris Deployment Solution 6.9.x, Notification Server 6.0.x, and Symantec Management Platform 7.0.x exposes an unsafe method, which allows remote attackers to force the download of arbitrary files and possibly execute arbitrary code via the DownloadAndInstall method.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Symantec Altiris eXpress NS SC Download ActiveX控件任意文件下载漏洞
Vulnerability Description
在Symantec Altiris Deployment Solution 6.9.x,Notification Server 6.0.x,及Symantec Management Platform 7.0.x版本中使用的AeXNSPkgDLLib.dll中的Altiris eXpress NS SC Download ActiveX控件暴露了一个不安全方法。远程攻击者可以借助DownloadAndInstall方法强制下载任意文件,并可能执行任意代码。
CVSS Information
N/A
Vulnerability Type
N/A