Unquoted Windows search path vulnerability in the agent in Symantec Workspace Streaming (SWS) 6.1 before SP8 MP2 HF7 and 7.5 before SP1 HF4, when AppMgrService.exe is configured as a service, allows local users to gain privileges via a Trojan horse executable file in the %SYSTEMDRIVE% directory, as demonstrated by program.exe.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
symantec workspace streaming 7.5 |
||
symantec workspace streaming 6.1 |