CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:S/C:C/I:C/A:C
AI Score
Confidence
Low
EPSS
Percentile
20.7%
Symantec pcAnywhere 12.5.x through 12.5.3, and IT Management Suite pcAnywhere Solution 7.0 (aka 12.5.x) and 7.1 (aka 12.6.x), uses world-writable permissions for product-installation files, which allows local users to gain privileges by modifying a file.
Vendor | Product | Version | CPE |
---|---|---|---|
symantec | pcanywhere | 12.5 | cpe:2.3:a:symantec:pcanywhere:12.5:*:*:*:*:*:*:* |
symantec | pcanywhere | 12.5 | cpe:2.3:a:symantec:pcanywhere:12.5:sp1:*:*:*:*:*:* |
symantec | pcanywhere | 12.5 | cpe:2.3:a:symantec:pcanywhere:12.5:sp2:*:*:*:*:*:* |
symantec | pcanywhere | 12.5 | cpe:2.3:a:symantec:pcanywhere:12.5:sp3:*:*:*:*:*:* |
symantec | pcanywhere | 12.5.539 | cpe:2.3:a:symantec:pcanywhere:12.5.539:*:*:*:*:*:*:* |
symantec | pcanywhere | 12.6.65 | cpe:2.3:a:symantec:pcanywhere:12.6.65:*:*:*:*:*:*:* |
symantec | pcanywhere | 12.6.65 | cpe:2.3:a:symantec:pcanywhere:12.6.65:sp1:*:*:*:*:*:* |
symantec | pcanywhere | 12.6.7580 | cpe:2.3:a:symantec:pcanywhere:12.6.7580:*:*:*:*:*:*:* |