Symantec Altiris Deployment Solution 6.8.x and 6.9.x before 6.9.176 does not properly protect the install directory, which might allow local users to gain privileges by replacing an application component with a Trojan horse.

More... (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2008-2287)