CVE-2011-3478

Name of the Vulnerable Software and Affected Versions Symantec pcAnywhere versions 12.5.x through 12.5.3 Symantec IT Management Suite pcAnywhere Solution version 7.0 (aka 12.5.x) Symantec IT Management Suite pcAnywhere Solution version 7.1 (aka 12.6.x)

Description The issue is related to the host-services component, which does not properly filter login and authentication data. This allows remote attackers to execute arbitrary code via a crafted session on TCP port 5631, specifically the API endpoint on port 5631.

Recommendations For Symantec pcAnywhere versions 12.5.x through 12.5.3, consider restricting access to the host-services component until a patch is available. For Symantec IT Management Suite pcAnywhere Solution version 7.0 (aka 12.5.x), restrict access to the host-services component to minimize the risk of exploitation. For Symantec IT Management Suite pcAnywhere Solution version 7.1 (aka 12.6.x), avoid using the vulnerable host-services component in the API endpoint on port 5631 until the issue is resolved.