Security Advisory

CVE-2008-4388

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2009-01-20 16:00:00

Last updated 2024-09-16 19:14:36

Assigner certcc

State PUBLISHED

Description

The LaunchObj ActiveX control before 5.2.2.865 in launcher.dll in Symantec AppStream Client 5.2.x before 5.2.2 SP3 MP1 does not properly validate downloaded files, which allows remote attackers to execute arbitrary code via the installAppMgr method and unspecified other methods.

← Browse all CVEs View on cve.org ↗