29 matches found
EUVD-2015-1619
Malware in sbrugna...
EUVD-2016-3289
Malware in sbrugna...
EUVD-2016-3290
Malware in sbrugna...
Symantec Workspace Streaming Information Disclosure Vulnerability
Symantec Symantec Workspace Streaming is prone to an information disclosure vulnerability. SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE ...
CVE-2016-2206
The management console in Symantec Workspace Streaming SWS 7.5.x before 7.5 SP1 HF9 and 7.6.0 before 7.6 HF5 and Symantec Workspace Virtualization SWV 7.5.x before 7.5 SP1 HF9 and 7.6.0 before 7.6 HF5 allows remote authenticated users to read arbitrary files by modifying the file-download...
CVE-2016-2206
The management console in Symantec Workspace Streaming SWS 7.5.x before 7.5 SP1 HF9 and 7.6.0 before 7.6 HF5 and Symantec Workspace Virtualization SWV 7.5.x before 7.5 SP1 HF9 and 7.6.0 before 7.6 HF5 allows remote authenticated users to read arbitrary files by modifying the file-download...
CVE-2016-2205
Directory traversal vulnerability in the file-download configuration file in the management console in Symantec Workspace Streaming SWS 7.5.x before 7.5 SP1 HF9 and 7.6.0 before 7.6 HF5 and Symantec Workspace Virtualization SWV 7.5.x before 7.5 SP1 HF9 and 7.6.0 before 7.6 HF5 allows remote...
Directory traversal
Directory traversal vulnerability in the file-download configuration file in the management console in Symantec Workspace Streaming SWS 7.5.x before 7.5 SP1 HF9 and 7.6.0 before 7.6 HF5 and Symantec Workspace Virtualization SWV 7.5.x before 7.5 SP1 HF9 and 7.6.0 before 7.6 HF5 allows remote...
Symantec Workspace Streaming/Workspace Virtualization Path Traversal Vulnerability
Symantec Workspace Streaming enables on-demand application setup, real-time software license management, and instant application upgrades.Symantec Workspace Virtualization enables application virtualization, which reduces application conflicts, lowers testing requirements, and reduces support...
Symantec Workspace Streaming/Workspace Virtualization Arbitrary File Read Vulnerability
Symantec Workspace Streaming enables on-demand application setup, real-time software license management, and instant application upgrades.Symantec Workspace Virtualization enables application virtualization, which reduces application conflicts, lowers testing requirements, and reduces support...
Symantec Workspace Streaming and Workspace Virtualization Path Traversal and Arbitrary File Read
SUMMARY Symantec Workspace Streaming SWS and Workspace Virtualization SWV management consoles were susceptible to a path traversal in a file download configuration file that could allow a malicious user who could access the vulnerable file to view unauthorized application files of specific file...
Symantec Workspace Streaming Agent Unquoted Service Path Local Privilege Escalation (SYM15-004)
The version of the Symantec Workspace Streaming SWS agent installed on the remote Windows host is affected by a local privilege escalation vulnerability due to an unquoted search path in AppMgrService.exe. A local attacker can exploit this to execute arbitrary code with local system privileges...
Code injection
Unquoted Windows search path vulnerability in the agent in Symantec Workspace Streaming SWS 6.1 before SP8 MP2 HF7 and 7.5 before SP1 HF4, when AppMgrService.exe is configured as a service, allows local users to gain privileges via a Trojan horse executable file in the %SYSTEMDRIVE% directory, as...
CVE-2015-1484
Unquoted Windows search path vulnerability in the agent in Symantec Workspace Streaming SWS 6.1 before SP8 MP2 HF7 and 7.5 before SP1 HF4, when AppMgrService.exe is configured as a service, allows local users to gain privileges via a Trojan horse executable file in the %SYSTEMDRIVE% directory, as...
CVE-2015-1484
Unquoted Windows search path vulnerability in the agent in Symantec Workspace Streaming SWS 6.1 before SP8 MP2 HF7 and 7.5 before SP1 HF4, when AppMgrService.exe is configured as a service, allows local users to gain privileges via a Trojan horse executable file in the %SYSTEMDRIVE% directory, as...
Symantec Workspace Streaming Agent 'AppMgrService.exe' Local Elevation of Privilege Vulnerability
Symantec Workspace Streaming enables on-demand application setup, real-time software license management, and instant application upgrades. A local elevation of privilege vulnerability exists in the Symantec Workspace Streaming Agent implementation of 'AppMgrService.exe'. An attacker could exploit...
Symantec Workspace Streaming Arbitrary File Upload
No description provided by source. This module requires Metasploit: http//metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' require 'rexml/document' class Metasploit3 Msf::Exploit::Remote Rank = ExcellentRanking include...
Symantec Workspace Streaming - Arbitrary File Upload (Metasploit)
This module requires Metasploit: http//metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' require 'rexml/document' class Metasploit3 'Symantec Workspace Streaming Arbitrary File Upload', 'Description' = %q This module exploits a code executio...
Symantec Workspace Streaming Server Detection
Binary data symantecworkspacestreaminginstalled.nbin...
Symantec Workspace Streaming < 7.5 SP1 XMLRPC Request Remote Code Execution (SYM14-009)
The version of Symantec Workspace Streaming server formerly known as Altiris Streaming System installed on the remote Windows host is affected by a remote code execution vulnerability. This issue is caused by improper validation of HTTPS XMLRPC requests by the Management Agent asagent.exe...