Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nvd[email protected]NVD:CVE-2012-0290
HistoryFeb 06, 2012 - 8:55 p.m.

CVE-2012-0290

2012-02-0620:55:02
[email protected]
web.nvd.nist.gov
1

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

6.6 Medium

AI Score

Confidence

Low

0.008 Low

EPSS

Percentile

81.8%

JSON

Symantec pcAnywhere through 12.5.3, Altiris IT Management Suite pcAnywhere Solution 7.0 (aka 12.5.x) and 7.1 (aka 12.6.x), Altiris Client Management Suite pcAnywhere Solution 7.0 (aka 12.5.x) and 7.1 (aka 12.6.x), and Altiris Deployment Solution Remote pcAnywhere Solution 7.1 (aka 12.5.x and 12.6.x) do not properly handle the client state after abnormal termination of a remote session, which allows remote attackers to obtain access to the client by leveraging an โ€œopen client session.โ€

Affected configurations

NVD
Node
symantecpcanywhereRangeโ‰ค12.5.3
OR
symantecpcanywhereMatch5.0
OR
symantecpcanywhereMatch8.0
OR
symantecpcanywhereMatch9.2
OR
symantecpcanywhereMatch10.5
OR
symantecpcanywhereMatch11.5
OR
symantecpcanywhereMatch11.5.1
OR
symantecpcanywhereMatch12.1
OR
symantecpcanywhereMatch12.5sp1
OR
symantecpcanywhereMatch12.5sp2
OR
symantecpcanywhereMatch12.5sp3
OR
symantecpcanywhereMatch12.5.265
Node
symantecpcanywhereMatch12.5
OR
symantecpcanywhereMatch12.5sp1
OR
symantecpcanywhereMatch12.5sp2
OR
symantecpcanywhereMatch12.5sp3
OR
symantecpcanywhereMatch12.5.539
Node
symantecpcanywhereMatch12.6.65
OR
symantecpcanywhereMatch12.6.7580
Node
symantecaltiris_client_management_suite_pcanywhere_solutionMatch12.5
OR
symantecaltiris_client_management_suite_pcanywhere_solutionMatch12.5sp1
OR
symantecaltiris_client_management_suite_pcanywhere_solutionMatch12.5sp2
OR
symantecaltiris_client_management_suite_pcanywhere_solutionMatch12.6
OR
symantecaltiris_client_management_suite_pcanywhere_solutionMatch12.6sp1
OR
symantecaltiris_client_management_suite_pcanywhere_solutionMatch12.6sp2
Node
symantecaltiris_deployment_solution_remote_pcanywhere_solutionMatch12.5
OR
symantecaltiris_deployment_solution_remote_pcanywhere_solutionMatch12.5sp1
OR
symantecaltiris_deployment_solution_remote_pcanywhere_solutionMatch12.5sp2
OR
symantecaltiris_deployment_solution_remote_pcanywhere_solutionMatch12.6
OR
symantecaltiris_deployment_solution_remote_pcanywhere_solutionMatch12.6sp1
OR
symantecaltiris_deployment_solution_remote_pcanywhere_solutionMatch12.6sp2

Related

seebug 1
prion 1
cvelist 1
cve 1
kaspersky 1
symantec 1
nessus 1
seebug
seebug
Symantec pcAnywhereไผš่ฏๅ…ณ้—ญ่ฎฟ้—ฎๅ†ฒ็ชๆผๆดž
2012-02-06 00:00:00
prion
prion
Session fixation
2012-02-06 20:55:00
cvelist
cvelist
CVE-2012-0290
2012-02-06 20:00:00
cve
cve
CVE-2012-0290
2012-02-06 20:55:02
kaspersky
kaspersky
KLA10356 Multiple vulnerabilities in pcAnywhere
2012-02-22 00:00:00
symantec
symantec
Symantec pcAnywhere Multiple Security Updates
2012-01-24 08:00:00
nessus
nessus
Symantec pcAnywhere Multiple Vulnerabilities (SYM12-002)
2012-02-02 00:00:00

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

6.6 Medium

AI Score

Confidence

Low

0.008 Low

EPSS

Percentile

81.8%

JSON
Related for NVD:CVE-2012-0290
seebug1prion1cvelist1cve1kaspersky1symantec1nessus1