CVSS: 10.0EPSS: 2%CPEs: 31EXPL: 0CVE-2012-0290
https://notcve.org/view.php?id=CVE-2012-0290
06 Feb 2012 — Symantec pcAnywhere through 12.5.3, Altiris IT Management Suite pcAnywhere Solution 7.0 (aka 12.5.x) and 7.1 (aka 12.6.x), Altiris Client Management Suite pcAnywhere Solution 7.0 (aka 12.5.x) and 7.1 (aka 12.6.x), and Altiris Deployment Solution Remote pcAnywhere Solution 7.1 (aka 12.5.x and 12.6.x) do not properly handle the client state after abnormal termination of a remote session, which allows remote attackers to obtain access to the client by leveraging an "open client session." Symantec pcAnywhere ha... • http://secunia.com/advisories/48092 •
CVSS: 7.8EPSS: 0%CPEs: 8EXPL: 1CVE-2011-3479 – Symantec pcAnywhere - Insecure File Permissions Privilege Escalation
https://notcve.org/view.php?id=CVE-2011-3479
25 Jan 2012 — Symantec pcAnywhere 12.5.x through 12.5.3, and IT Management Suite pcAnywhere Solution 7.0 (aka 12.5.x) and 7.1 (aka 12.6.x), uses world-writable permissions for product-installation files, which allows local users to gain privileges by modifying a file. Symantec pcAnywhere v12.5.x a través de c12.5.3, y IT Management Suite pcAnywhere solución c7.0 (aka 12.5.x) y c7.1 (también conocido como 12.6.x), utiliza el mundo pueda escribir permisos para los archivos de instalación del producto, que permite a usuario... • https://www.exploit-db.com/exploits/18823 • CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 10.0EPSS: 58%CPEs: 8EXPL: 2CVE-2011-3478 – Symantec PCAnywhere awhost32 Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2011-3478
25 Jan 2012 — The host-services component in Symantec pcAnywhere 12.5.x through 12.5.3, and IT Management Suite pcAnywhere Solution 7.0 (aka 12.5.x) and 7.1 (aka 12.6.x), does not properly filter login and authentication data, which allows remote attackers to execute arbitrary code via a crafted session on TCP port 5631. El componente de host de servicios de Symantec pcAnywhere v12.5.x a través de v12.5.3, y IT Management Suite pcAnywhere Solution v7.0 (aka 12.5.x) y v7.1 (también conocido como 12.6.x), de inicio de sesi... • https://www.exploit-db.com/exploits/19407 • CWE-287: Improper Authentication •