Directory traversal vulnerability in the file-download configuration file in the management console in Symantec Workspace Streaming (SWS) 7.5.x before 7.5 SP1 HF9 and 7.6.0 before 7.6 HF5 and Symantec Workspace Virtualization (SWV) 7.5.x before 7.5 SP1 HF9 and 7.6.0 before 7.6 HF5 allows remote authenticated users to read unspecified application files via unknown vectors.
References
Configurations
Configuration 1 (hide)
|
History
21 Nov 2024, 02:48
Type | Values Removed | Values Added |
---|---|---|
References | () http://www.securityfocus.com/bid/89395 - | |
References | () http://www.securitytracker.com/id/1036262 - | |
References | () http://www.securitytracker.com/id/1036263 - | |
References | () http://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&year=&suid=20160707_00 - Vendor Advisory |
Information
Published : 2016-07-12 02:00
Updated : 2024-11-21 02:48
NVD link : CVE-2016-2205
Mitre link : CVE-2016-2205
CVE.ORG link : CVE-2016-2205
JSON object : View
Products Affected
symantec
- workspace_streaming
- workspace_virtualization
CWE
CWE-22
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')