Vulnerability Name:

CVE-2008-4389 (CCN-59504)

Assigned:2008-10-02
Published:2010-06-16
Updated:2017-08-08
Summary:Symantec AppStream 5.2.x and Symantec Workspace Streaming (SWS) 6.1.x before 6.1 SP4 do not properly perform authentication, which allows remote Workspace Streaming servers and man-in-the-middle attackers to download arbitrary executable files onto a client system, and execute these files, via unspecified vectors.
CVSS v3 Severity:7.3 High (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L)
Exploitability Metrics:Attack Vector (AV): Network
Attack Complexity (AC): Low
Privileges Required (PR): None
User Interaction (UI): None
Scope:Scope (S): Unchanged
Impact Metrics:Confidentiality (C): Low
Integrity (I): Low
Availibility (A): Low
CVSS v2 Severity:9.3 High (CVSS v2 Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C)
6.9 Medium (Temporal CVSS v2 Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C/E:U/RL:OF/RC:C)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Medium
Authentication (Au): None
Impact Metrics:Confidentiality (C): Complete
Integrity (I): Complete
Availibility (A): Complete
6.8 Medium (CCN CVSS v2 Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P)
5.0 Medium (CCN Temporal CVSS v2 Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P/E:U/RL:OF/RC:C)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Medium
Athentication (Au): None
Impact Metrics:Confidentiality (C): Partial
Integrity (I): Partial
Availibility (A): Partial
Vulnerability Type:CWE-287
Vulnerability Consequences:Gain Access
References:Source: MITRE
Type: CNA
CVE-2008-4389

Source: CCN
Type: SA40233
Symantec AppStream / Workspace Streaming Authentication Security Bypass

Source: SECUNIA
Type: UNKNOWN
40233

Source: CCN
Type: US-CERT VU#221257
Symantec AppStream and Workspace Streaming vulnerable to arbitrary code download and execution

Source: CERT-VN
Type: US Government Resource
VU#221257

Source: CCN
Type: OSVDB ID: 65601
Symantec AppStream / Workspace Streaming (SWS) aswe: URI MiTM File Download Arbitrary Code Execution

Source: BID
Type: UNKNOWN
40611

Source: CCN
Type: BID-40611
Symantec Workspace Streaming Server Authentication Arbitrary File Download Vulnerability

Source: CCN
Type: SYM10-008
Symantec Workspace Streaming Potential Unauthorized Downloads

Source: CONFIRM
Type: UNKNOWN
http://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&year=2010&suid=20100616_00

Source: VUPEN
Type: UNKNOWN
ADV-2010-1511

Source: XF
Type: UNKNOWN
symantec-appstream-download-ce(59504)

Source: XF
Type: UNKNOWN
symantec-appstream-download-ce(59504)

Vulnerable Configuration:Configuration 1:
  • cpe:/a:symantec:workspace_streaming:6.1:*:*:*:*:*:*:*
  • OR cpe:/a:symantec:workspace_streaming:6.1:sp1:*:*:*:*:*:*
  • OR cpe:/a:symantec:workspace_streaming:6.1:sp2:*:*:*:*:*:*
  • OR cpe:/a:symantec:workspace_streaming:6.1:sp3:*:*:*:*:*:*

    • Configuration 2:
  • cpe:/a:symantec:appstream:5.2:*:*:*:*:*:*:*
  • OR cpe:/a:symantec:appstream:5.2.1:*:*:*:*:*:*:*
  • OR cpe:/a:symantec:appstream:5.2.2:*:*:*:*:*:*:*
  • OR cpe:/a:symantec:appstream:5.2.3:*:*:*:*:*:*:*

    • Configuration CCN 1:
  • cpe:/a:symantec:appstream_client:5.2:*:*:*:*:*:*:*
  • OR cpe:/a:symantec:workspace_streaming:6.1:*:*:*:*:*:*:*

    • * Denotes that component is vulnerable
    BACK
    symantec workspace streaming 6.1
    symantec workspace streaming 6.1 sp1
    symantec workspace streaming 6.1 sp2
    symantec workspace streaming 6.1 sp3
    symantec appstream 5.2
    symantec appstream 5.2.1
    symantec appstream 5.2.2
    symantec appstream 5.2.3
    symantec appstream client 5.2
    symantec workspace streaming 6.1