CVE-2016-2205

Directory traversal vulnerability in the file-download configuration file in the management console in Symantec Workspace Streaming (SWS) 7.5.x before 7.5 SP1 HF9 and 7.6.0 before 7.6 HF5 and Symantec Workspace Virtualization (SWV) 7.5.x before 7.5 SP1 HF9 and 7.6.0 before 7.6 HF5 allows remote authenticated users to read unspecified application files via unknown vectors.
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:symantec:workspace_streaming:7.5.0:*:*:*:*:*:*:*
cpe:2.3:a:symantec:workspace_streaming:7.5.0:sp1:*:*:*:*:*:*
cpe:2.3:a:symantec:workspace_streaming:7.6.0:*:*:*:*:*:*:*
cpe:2.3:a:symantec:workspace_virtualization:7.5.0:*:*:*:*:*:*:*
cpe:2.3:a:symantec:workspace_virtualization:7.5.0:sp1:*:*:*:*:*:*
cpe:2.3:a:symantec:workspace_virtualization:7.6.0:*:*:*:*:*:*:*

History

21 Nov 2024, 02:48

Type Values Removed Values Added
References () http://www.securityfocus.com/bid/89395 - () http://www.securityfocus.com/bid/89395 -
References () http://www.securitytracker.com/id/1036262 - () http://www.securitytracker.com/id/1036262 -
References () http://www.securitytracker.com/id/1036263 - () http://www.securitytracker.com/id/1036263 -
References () http://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&year=&suid=20160707_00 - Vendor Advisory () http://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&year=&suid=20160707_00 - Vendor Advisory

Information

Published : 2016-07-12 02:00

Updated : 2024-11-21 02:48


NVD link : CVE-2016-2205

Mitre link : CVE-2016-2205

CVE.ORG link : CVE-2016-2205


JSON object : View

Products Affected

symantec

  • workspace_streaming
  • workspace_virtualization
CWE
CWE-22

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')