CVE-2015-1484
Symantec Workspace Streaming <6.1-7.5 - Privilege Escalation
Title source: llmDescription
Unquoted Windows search path vulnerability in the agent in Symantec Workspace Streaming (SWS) 6.1 before SP8 MP2 HF7 and 7.5 before SP1 HF4, when AppMgrService.exe is configured as a service, allows local users to gain privileges via a Trojan horse executable file in the %SYSTEMDRIVE% directory, as demonstrated by program.exe.
References (3)
Core 3
Core References
Third Party Advisory, VDB Entry vdb-entry
x_refsource_sectrack
http://www.securitytracker.com/id/1032133
Vendor Advisory x_refsource_confirm
http://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&year=&suid=20150410_00
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/73925
Scores
EPSS
0.0007
EPSS Percentile
20.8%
Details
Status
published
Products (2)
symantec/workspace_streaming
6.1 sp8
symantec/workspace_streaming
7.5 sp1
Published
Apr 22, 2015
Tracked Since
Feb 18, 2026