Lucene search

[email protected]CVE-2005-1970

HistoryJun 16, 2005 - 4:00 a.m.

CVE-2005-1970

2005-06-1604:00:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

symantec

pcanywhere

security

vulnerability

local users

arbitrary commands

7.2 High

AI Score

Confidence

Low

7.2 High

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

0.001 Low

EPSS

Percentile

33.6%

JSON

Symantec pcAnywhere 10.5x and 11.x before 11.5, with “Launch with Windows” enabled, allows local users with physical access to execute arbitrary commands via the Caller Properties feature.

CPENameOperatorVersion
symantec:pcanywheresymantec pcanywhereeq9.0.1
symantec:pcanywheresymantec pcanywhereeq10.0
symantec:pcanywheresymantec pcanywhereeq8.0.1
symantec:pcanywheresymantec pcanywhereeq9.0
symantec:pcanywheresymantec pcanywhereeq9.2
symantec:pcanywheresymantec pcanywhereeq11.0
symantec:pcanywheresymantec pcanywhereeq10.5
symantec:pcanywheresymantec pcanywhereeq8.0.2

CPE	Name	Operator	Version
symantec:pcanywhere	symantec pcanywhere	eq	9.0.1
symantec:pcanywhere	symantec pcanywhere	eq	10.0
symantec:pcanywhere	symantec pcanywhere	eq	8.0.1
symantec:pcanywhere	symantec pcanywhere	eq	9.0
symantec:pcanywhere	symantec pcanywhere	eq	9.2
symantec:pcanywhere	symantec pcanywhere	eq	11.0
symantec:pcanywhere	symantec pcanywhere	eq	10.5
symantec:pcanywhere	symantec pcanywhere	eq	8.0.2

References

secunia.com/advisories/15673

securityresponse.symantec.com/avcenter/security/Content/2005.06.10.html

securitytracker.com/id?1014178

www.securityfocus.com/bid/13933

7.2 High

AI Score

Confidence

Low

7.2 High

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

0.001 Low

EPSS

Percentile

33.6%

JSON

Related for CVE-2005-1970

nessus1