CVE-2014-1649

Name of the Vulnerable Software and Affected Versions Symantec Workspace Streaming versions prior to 7.5.0.749

Description The issue allows remote attackers to access files and functionality by sending a crafted XMLRPC request over HTTPS. This can potentially lead to remote code execution.

Recommendations For versions prior to 7.5.0.749, update to version 7.5.0.749 or later to resolve the issue. As a temporary workaround, consider restricting access to the XMLRPC interface until a patch is applied. Avoid using the putFile method in the XMLRPC request until the issue is resolved.