The Altiris.AeXNSPkgDL.1 ActiveX control, a component of Altiris Deployment Solution, Altiris Notification Server, and Symantec Management Platform, is installed on the remote Windows host.
The installed version of this control provides an unsafe method, named 'DownloadAndInstall'.
If an attacker can trick a user on the affected host into viewing a specially crafted HTML document, he may be able to leverage this issue to download and execute arbitrary code on the affected system subject to the user's privileges.
Apply the appropriate fix according to Symantec's advisory.
Complete Confidentiality Impact, Complete Integrity Impact, Complete Availability Impact