Symantec AppStream Client LaunchObj ActiveX Control Multiple Unsafe Methods (SYM09-001)
High Nessus Plugin ID 35403
SynopsisThe remote Windows host has an ActiveX control that can be used to download and execute arbitrary code.
DescriptionThe version of the LaunchObj ActiveX control, a component included with Symantec AppStream Client / Altiris Streaming Agent and installed on the remote Windows host, reportedly contains a number of unsafe methods, such as 'installAppMgr()', that can be used to download and execute arbitrary code. If an attacker can trick a user on the affected host into viewing a specially crafted HTML document, he can leverage these issues to execute arbitrary code on the affected system subject to the user's privileges.
SolutionUpgrade to Symantec AppStream Client 5.2.2 SP3 MP1 or later and verify that the version of the control is 126.96.36.1995 or later.