CVE-2014-1649

Currently unrated

Key Information:

Vendor: Symantec
Status: Workspace Streaming
Vendor: CVE Published:; 16 May 2014

Summary

The server in Symantec Workspace Streaming (SWS) before 7.5.0.749 allows remote attackers to access files and functionality by sending a crafted XMLRPC request over HTTPS.

References

http://zerodayinitiative.com/advisories/ZDI-14-127/

x_refsource_MISC

http://www.securityfocus.com/bid/67189

vdb-entryx_refsource_BID

http://www.symantec.com/security_response/securityupdates...

x_refsource_CONFIRM

EPSS Score

97% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
May 16, 2014
Vulnerability Reserved
Jan 23, 2014