CyberSec.Space Logo
CVEブラウザに戻る

CVE-2014-1649

HIGH
7.9
CVSS Severity Score
EPSS Score0.1430%
EPSS Percentile31.69th
Published2014年5月16日
Last Modified2026年5月6日

Vulnerability Description

The server in Symantec Workspace Streaming (SWS) before 7.5.0.749 allows remote attackers to access files and functionality by sending a crafted XMLRPC request over HTTPS.

Affected Platforms (CPE)

📦
Symantec

Workspace Streaming

<= 7.5.0
📦
Symantec

Workspace Streaming

= 6.1
📦
Symantec

Workspace Streaming

= 6.1
📦
Symantec

Workspace Streaming

= 6.1
📦
Symantec

Workspace Streaming

= 6.1
📦
Symantec

Workspace Streaming

= 6.1

References & Advisories

🔗 http://www.exploit-db.com/exploits/33521
🔗 http://www.securityfocus.com/bid/67189
🔗 http://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&year=&suid=20140512_00
🔗 http://zerodayinitiative.com/advisories/ZDI-14-127/
🔗 http://www.exploit-db.com/exploits/33521
🔗 http://www.securityfocus.com/bid/67189
🔗 http://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&year=&suid=20140512_00
🔗 http://zerodayinitiative.com/advisories/ZDI-14-127/

関連する脆弱性情報

CVE-2008-43899.3

Symantec AppStream 5.2.x and Symantec Workspace Streaming (SWS) 6.1.x before 6.1 SP4 do not properly perform authentication, which...

CVE-2015-14846.9

Unquoted Windows search path vulnerability in the agent in Symantec Workspace Streaming (SWS) 6.1 before SP8 MP2 HF7 and 7.5 befor...

CVE-2016-22055.7

Directory traversal vulnerability in the file-download configuration file in the management console in Symantec Workspace Streamin...

CVE-2016-22065.7

The management console in Symantec Workspace Streaming (SWS) 7.5.x before 7.5 SP1 HF9 and 7.6.0 before 7.6 HF5 and Symantec Worksp...