VYPR

Appstream

by Symantec

CVEs (2)

  • CVE-2008-4388Jan 20, 2009
    risk 0.06cvss epss 0.38

    The LaunchObj ActiveX control before 5.2.2.865 in launcher.dll in Symantec AppStream Client 5.2.x before 5.2.2 SP3 MP1 does not properly validate downloaded files, which allows remote attackers to execute arbitrary code via the installAppMgr method and unspecified other methods.

  • CVE-2008-4389Jun 17, 2010
    risk 0.00cvss epss 0.02

    Symantec AppStream 5.2.x and Symantec Workspace Streaming (SWS) 6.1.x before 6.1 SP4 do not properly perform authentication, which allows remote Workspace Streaming servers and man-in-the-middle attackers to download arbitrary executable files onto a client system, and execute…