Vulnerabilities > CVE-2012-0290 - Unspecified vulnerability in Symantec products
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN symantec
nessus
Summary
Symantec pcAnywhere through 12.5.3, Altiris IT Management Suite pcAnywhere Solution 7.0 (aka 12.5.x) and 7.1 (aka 12.6.x), Altiris Client Management Suite pcAnywhere Solution 7.0 (aka 12.5.x) and 7.1 (aka 12.6.x), and Altiris Deployment Solution Remote pcAnywhere Solution 7.1 (aka 12.5.x and 12.6.x) do not properly handle the client state after abnormal termination of a remote session, which allows remote attackers to obtain access to the client by leveraging an "open client session."
Vulnerable Configurations
Nessus
NASL family | Windows |
NASL id | SYMANTEC_PCANYWHERE_125_MULTIPLE_VULNS.NASL |
description | The version of Symantec pcAnywhere installed on the remote host is potentially affected by multiple vulnerabilities : - When handling an authentication request the process copies the user-supplied username unsafely to a fixed-length buffer, which could lead to arbitrary code execution. (CVE-2011-3478) - A local privilege escalation vulnerability exists because some files uploaded to the system during product installation are installed as writable by everyone. (CVE-2011-3479) - During a valid client server session unexpected input to the client can result in an exception error. This can create an acess violation resulting in the remote session being dropped but leaving the client session open in specific instances. (CVE-2012-0290) - Malformed input to a client or server or, an unexpected response to a request could potentially destabilize the application causing it to hang or crash resulting in a denial of service. (CVE-2012-0291) |
last seen | 2020-06-01 |
modified | 2020-06-02 |
plugin id | 57796 |
published | 2012-02-02 |
reporter | This script is Copyright (C) 2012-2018 Tenable Network Security, Inc. |
source | https://www.tenable.com/plugins/nessus/57796 |
title | Symantec pcAnywhere Multiple Vulnerabilities (SYM12-002) |
code |
|
Seebug
bulletinFamily | exploit |
description | Bugtraq ID: 51862 CVE ID:CVE-2012-0290 Symantec pcAnywhere是一款流行的远程管理程序 在一个有效的客户端服务器会话意外输入到客户端中时会导致一个异常错误,这可创建一个访问冲突,导致远程服务器连接会话被丢弃,但在特定的情况下把客户端会话处于打开状态。这可能潜在的导致一个对客户端会话的未授权链接(可通过中间人攻击) 0 Symantec pcAnywhere Solution 12.6 Symantec pcAnywhere Solution 12.5 Symantec pcAnywhere 12.5.3 Symantec pcAnywhere 11.5.1 Symantec pcAnywhere 11.5 Symantec pcAnywhere 11.0.1 Symantec pcAnywhere 11.0 Symantec pcAnywhere 10.5 Symantec pcAnywhere 10.0 Symantec pcAnywhere 12.5 SP1 Symantec pcAnywhere 12.5 Symantec pcAnywhere 12.1 Symantec pcAnywhere 12.0 厂商解决方案 用户可参考如下供应商提供的安全公告获得补丁信息: https://www-secure.symantec.com/connect/sites/default/files/pcAnywhere%20Security%20Recommendations%20WP_01_23_Final.pdf |
id | SSV:30087 |
last seen | 2017-11-19 |
modified | 2012-02-06 |
published | 2012-02-06 |
reporter | Root |
title | Symantec pcAnywhere会话关闭访问冲突漏洞 |
References
- http://secunia.com/advisories/48092
- http://www.securityfocus.com/bid/51862
- http://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&year=2012&suid=20120124_00
- https://exchange.xforce.ibmcloud.com/vulnerabilities/72996
- http://secunia.com/advisories/48092
- https://exchange.xforce.ibmcloud.com/vulnerabilities/72996
- http://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&year=2012&suid=20120124_00
- http://www.securityfocus.com/bid/51862