VYPR
Unrated severityNVD Advisory· Published Apr 22, 2015· Updated Jun 17, 2026

CVE-2015-1484

CVE-2015-1484

Description

Unquoted Windows search path vulnerability in the agent in Symantec Workspace Streaming (SWS) 6.1 before SP8 MP2 HF7 and 7.5 before SP1 HF4, when AppMgrService.exe is configured as a service, allows local users to gain privileges via a Trojan horse executable file in the %SYSTEMDRIVE% directory, as demonstrated by program.exe.

Affected products

3
  • cpe:2.3:a:symantec:workspace_streaming:6.1:sp8:*:*:*:*:*:*+ 2 more
    • cpe:2.3:a:symantec:workspace_streaming:6.1:sp8:*:*:*:*:*:*
    • cpe:2.3:a:symantec:workspace_streaming:7.5:sp1:*:*:*:*:*:*
    • (no CPE)range: < SP8 MP2 HF7 (for 6.1) and < SP1 HF4 (for 7.5)

Patches

Vulnerability mechanics

References

3

News mentions

0

No linked articles in our index yet.