Symantec Workspace Streaming (SWS) and Workspace Virtualization (SWV) management consoles were susceptible to a path traversal in a file download configuration file that could allow a malicious user who could access the vulnerable file to view unauthorized application files of specific file types. An authenticated console user could manipulate this same file to read any file on the host system. This could potentially provide additional information for staging additional attacks on the application or host system.
Symantec Workspace Streaming
|
|
CVE-2016-2205
CVE-2016-2206
|
Prior to 7.5.x & 7.6
|
Apply Hotfix SWS 7.6 HF5 or Hotfix SWS 7.5SP1 HF9
Symantec Workspace Virtualization
|
|
CVE-2016-2205
CVE-2016-2206
|
Prior to 7.6 & 7.5.x
|
Apply Hotfix SWS 7.6 HF5 or Hotfix SWS 7.5SP1 HF9
CVE-2016-2205
Severity/CVSSv3:
|
Medium / 5.2 AV:A/AC:L/PR:L/UI:R/S:U/C:H/I:N/A:N
References:
Impact:
|
Securityfocus: BID 89395 / NVD: CVE-2016-2205
Path Traversal
Description:
|
Symantec was notified of an unauthorized path traversal vulnerability in the configuration tool download file. This file did not properly check file authorization. This could have potentially allow an authorized network user unauthorized access to this file and to be able to manipulate it to read specific application file types.
CVE-2016-2206
Severity/CVSSv3:
|
Medium / 4.5 AV:A/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N
References:
Impact:
|
Securityfocus: BID 89394 / NVD: CVE-2016-2206
Arbitrary file read
Description:
|
An authorized management console user could manipulate this same file to allow unauthorized read access to any file on the local host system. These types of unauthorized file read access could potentially provide sufficient information to stage additional exploit attempts against the application or the host system.
Symantec Response
Symantec engineers verified these issues and resolved them in the hot fixes listed in the products table above.
Symantec is not aware of exploitation of or adverse customer impact from this issue.
Update Information
Symantec Workspace Streaming and Workspace Virtualization hotfixes will be available through Symantec File Connect. Customers should apply these hotfixes to avoid potential incidents of this nature.
Best Practices
Symantec strongly recommends as part of normal best practices:
Symantec would like to thank Dmitry Serebryannikov (<https://twitter.com/dsrbr>) for reporting these to us and working with us as we addressed them.
CPE | Name | Operator | Version |
---|---|---|---|
symantec workspace streaming | eq | 7 | |
symantec workspace virtualization | eq | 7 |