PT-2005-2920 · Symantec · Pcanywhere

Published

2005-06-14

Updated

2008-09-05

CVE-2005-1970

CVSS v2.0

7.2

High

Vector

AV:L/AC:L/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions Symantec pcAnywhere versions 10.5x through 11.x before 11.5

Description The issue allows local users with physical access to execute arbitrary commands via the Caller Properties feature when "Launch with Windows" is enabled.

Recommendations For Symantec pcAnywhere versions 10.5x through 11.x before 11.5, disable the "Launch with Windows" feature to prevent exploitation. Consider upgrading to version 11.5 or later.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2005-1970

Affected Products

Pcanywhere

PT-2005-2920 · Symantec · Pcanywhere

CVE-2005-1970

Related Identifiers

Affected Products

References · 5