Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2012-0292

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2012-0292
Last Modified 08 Mar 2012 12:00:00
Published 07 Mar 2012 11:15:02
Confidentiality Impact NONE NONE
Integrity Impact NONE NONE
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2012-0292

Summary

The awhost32 service in Symantec pcAnywhere through 12.5.3, Altiris IT Management Suite pcAnywhere Solution 7.0 (aka 12.5.x) and 7.1 (aka 12.6.x), Altiris Client Management Suite pcAnywhere Solution 7.0 (aka 12.5.x) and 7.1 (aka 12.6.x), and Altiris Deployment Solution Remote pcAnywhere Solution 7.1 (aka 12.5.x and 12.6.x) allows remote attackers to cause a denial of service (daemon crash) via a crafted TCP session on port 5631.

Vulnerable Systems

Application

  • Symantec Altiris Client Management Suite Pcanywhere Solution 7.0

  • Symantec Altiris Climentent Manage Suite Pcanywhere Solution 7.1

  • Symantec Altiris Deployment Solution Remote Pcanywhere Solution 7.1

  • Symantec Altiris It Management Suite Pcanywhere Solution 7.0

  • Symantec Altiris It Management Suite Pcanywhere Solution 7.1

  • Symantec Pcanywhere 10.0

  • Symantec Pcanywhere 10.5

  • Symantec Pcanywhere 11.0

  • Symantec Pcanywhere 11.0.1

  • Symantec Pcanywhere 11.5

  • Symantec Pcanywhere 11.5.1

  • Symantec Pcanywhere 12.0

  • Symantec Pcanywhere 12.0.1

  • Symantec Pcanywhere 12.0.2

  • Symantec Pcanywhere 12.0.3

  • Symantec Pcanywhere 12.1

  • Symantec Pcanywhere 12.5

  • Symantec Pcanywhere 12.5.265

  • Symantec Pcanywhere 12.5.3

  • Symantec Pcanywhere 12.5.539


References

CONFIRM - http://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&year=2012&suid=20120301_00

BID - 52094

EXPLOIT-DB - 18493


Last Updated: 27 May 2016 10:58:20