Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2008-6827 PoC — Symantec Altiris Deployment Solution客户端GUI本地权限提升漏洞

Source
https://github.com/alt3kx/CVE-2008-6827
Associated Vulnerability
Title:Symantec Altiris Deployment Solution客户端GUI本地权限提升漏洞 (CVE-2008-6827)
Description:Symantec Altiris Deployment Solution是自动化的操作系统部署解决方案,用于从统一的位置部署和管理服务器、桌面和笔记本等。 Altiris客户端GUI的主窗口有一个隐藏按键,该按键的标题为"命令提示符"。点击这个按键会导致GUI试图用以下命令行参数调用CreateProcess(): c:\Program Files\Altiris\AClient\cmd.exe 客户端GUI还有一个ListView控件,可用于覆盖进程内存。本地攻击者可以使用ListView覆盖静态指针,
Description
Symantec Altiris Client Service 6.8.378 - Local Privilege Escalation
Readme
# CVE-2008-6827
Symantec Altiris Client Service 6.8.378 - Local Privilege Escalation

Exploit-DB publication at https://www.exploit-db.com/exploits/5625/

# Author
Alex Hernandez aka <em><a href="https://twitter.com/_alt3kx_" rel="nofollow">(@\_alt3kx\_)</a></em>
File Snapshot

 [4.0K]  /data/pocs/2a78d5b2cd0c76dced9d8248b59406095e1323e6
├── [4.5K]  CVE-2008-6827.txt
├── [ 34K]  LICENSE
└── [ 264]  README.md

0 directories, 3 files
Shenlong Bot has cached this for you
Remarks
    1. It is advised to access via the original source first.
    2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).
    3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.