Vulnerabilities > CVE-2006-3784 - Local Security vulnerability in Symantec Pcanywhere 12.5
Attack vector
LOCAL Attack complexity
LOW Privileges required
NONE Confidentiality impact
COMPLETE Integrity impact
COMPLETE Availability impact
COMPLETE Summary
Symantec pcAnywhere 12.5 uses weak default permissions for the "Symantec\pcAnywhere\Hosts" folder, which allows local users to gain privileges by inserting a superuser .cif (aka caller or CallerID) file into the folder, and then using a pcAnywhere client to login as a local administrator.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |