CVE-2016-2205

Name of the Vulnerable Software and Affected Versions Symantec Workspace Streaming (SWS) versions 7.5.x through 7.5 before SP1 HF9 Symantec Workspace Streaming (SWS) version 7.6.0 before 7.6 HF5 Symantec Workspace Virtualization (SWV) versions 7.5.x through 7.5 before SP1 HF9 Symantec Workspace Virtualization (SWV) version 7.6.0 before 7.6 HF5

Description A directory traversal vulnerability exists in the file-download configuration file in the management console. This issue allows remote authenticated users to read unspecified application files.

Recommendations For Symantec Workspace Streaming (SWS) versions 7.5.x through 7.5 before SP1 HF9, update to SP1 HF9 or later. For Symantec Workspace Streaming (SWS) version 7.6.0 before 7.6 HF5, update to 7.6 HF5 or later. For Symantec Workspace Virtualization (SWV) versions 7.5.x through 7.5 before SP1 HF9, update to SP1 HF9 or later. For Symantec Workspace Virtualization (SWV) version 7.6.0 before 7.6 HF5, update to 7.6 HF5 or later.