cpe:/a:symantec:altiris_deployment_solution:6.9 cpe:/a:symantec:altiris_deployment_solution:6.9:sp1 cpe:/a:symantec:altiris_deployment_solution:6.9:sp2 cpe:/a:symantec:altiris_deployment_solution:6.9:sp3 cpe:/a:symantec:altiris_deployment_solution:6.9.164 cpe:/a:symantec:altiris_deployment_solution:6.9.176 cpe:/a:symantec:altiris_deployment_solution:6.9.355 cpe:/a:symantec:altiris_deployment_solution:6.9.355:sp1 cpe:/a:symantec:altiris_management_platform:7.0 cpe:/a:symantec:altiris_management_platform:7.0:sp1 cpe:/a:symantec:altiris_notification_server:6.0 cpe:/a:symantec:altiris_notification_server:6.0:sp1 cpe:/a:symantec:altiris_notification_server:6.0:sp2 cpe:/a:symantec:altiris_notification_server:6.0:sp3 cpe:/a:symantec:altiris_notification_server:6.0:sp3_r7 cpe:/a:symantec:altiris_notification_server:6.0_sp3 CVE-2009-3033 2009-11-25T11:30:00.750-05:00 2017-08-16T21:31:01.053-04:00 9.3 NETWORK MEDIUM NONE COMPLETE COMPLETE COMPLETE http://nvd.nist.gov 2009-11-25T12:15:00.000-05:00 BID 37092 OSVDB 60496 VUPEN ADV-2009-3328 CONFIRM http://www.symantec.com/business/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&year=2009&suid=20091124_00 CONFIRM http://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&year=2009&suid=20091124_00 CONFIRM https://kb.altiris.com/article.asp?article=50072&p=1 CONFIRM https://kb.altiris.com/article.asp?article=50279&p=1 XF symantec-console-utilities-bo(54415) Buffer overflow in the RunCmd method in the Altiris eXpress NS Console Utilities ActiveX control in AeXNSConsoleUtilities.dll in the web console in Symantec Altiris Deployment Solution 6.9.x, Altiris Notification Server 6.0.x, and Management Platform 7.0.x allows remote attackers to execute arbitrary code via a long string in the second argument.