Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2005-1970

Overview

Vulnerability Score 7.2 7.2
CVE Id CVE-2005-1970
Last Modified 05 Sep 2008 04:50:33
Published 16 Jun 2005 12:00:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2005-1970

Summary

Symantec pcAnywhere 10.5x and 11.x before 11.5, with "Launch with Windows" enabled, allows local users with physical access to execute arbitrary commands via the Caller Properties feature.

Vulnerable Systems

Application

  • Symantec Pcanywhere 10.0

  • Symantec Pcanywhere 10.5

  • Symantec Pcanywhere 11.0

  • Symantec Pcanywhere 8.0.1

  • Symantec Pcanywhere 8.0.2

  • Symantec Pcanywhere 9.0

  • Symantec Pcanywhere 9.0.1

  • Symantec Pcanywhere 9.2


References

BID - 13933

CONFIRM - http://securityresponse.symantec.com/avcenter/security/Content/2005.06.10.html

SECTRACK - 1014178

SECUNIA - 15673


Last Updated: 27 May 2016 10:40:21