Vulnerabilities > CVE-2005-3934 - Denial of Service vulnerability in pcAnywhere Authentication

047910
CVSS 7.8 - HIGH
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
NONE
Integrity impact
NONE
Availability impact
COMPLETE
network
low complexity
symantec
exploit available

Summary

Buffer overflow in Symantec pcAnywhere 11.0.1, 11.5.1, and all other 32-bit versions allows remote attackers to cause a denial of service (application crash) via unknown attack vectors.

Exploit-Db

descriptionpcAnywhere 8.0/9.0/11.x Authentication Denial of Service Vulnerability. CVE-2005-3934. Dos exploit for windows platform
idEDB-ID:26665
last seen2016-02-03
modified2006-01-17
published2006-01-17
reporterDavid Maciejak
sourcehttps://www.exploit-db.com/download/26665/
titlepcAnywhere 8.0/9.0/11.x - Authentication Denial of Service Vulnerability

Seebug

bulletinFamilyexploit
descriptionBUGTRAQ ID: 15646 CVE(CAN) ID: CVE-2005-3934 Symantec pcAnywhere是全球最畅销的用于管理服务器和提供管理人员支持的远程控制解决方案。 pcAnywhere在处理特制消息的时候存在溢出漏洞,可能导致拒绝服务。由于溢出发生在认证之前,因此远程攻击者无需有效的凭据便可利用这个漏洞。 Symantec pcAnywhere 11.5.1 Symantec pcAnywhere 11.0.1 目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载: <a href=http://www.symantec.com/techsupp/files/pca/index.html target=_blank>http://www.symantec.com/techsupp/files/pca/index.html</a> <a href=http://www.symantec.com/techsupp/enterprise/products/spca/files.html target=_blank>http://www.symantec.com/techsupp/enterprise/products/spca/files.html</a>
idSSV:4218
last seen2017-11-19
modified2006-08-17
published2006-08-17
reporterRoot
sourcehttps://www.seebug.org/vuldb/ssvid-4218
titlepcAnywhere认证拒绝服务漏洞