Information disclosure in Symantec Management_platform

CVE-2013-5008

The agent and task-agent components in Symantec Management Platform 7.0 and 7.1 before 7.1 SP2 Mp1.1v7 rollup, as used in certain Altiris products, use the same registry-entry encryption key across different customers' installations, which…

Vulnerability class: Information Disclosure

EPSS: 0.000 (11.6th percentile) — read the EPSS interpretation.

Affected products

Symantec Management_platform — versions 7.0, 7.1
N/a — versions n/a

Weakness classification (CWE)

CWE-200 — Information Disclosure

References

62757 (vdb-entry, x_refsource_BID)
secure@symantec.com (x_refsource_CONFIRM, Patch, Vendor Advisory)