Vulnerabilities > Symantec > Pcanywhere

DATE CVE VULNERABILITY TITLE RISK
2006-07-24 CVE-2006-3784 Local Security vulnerability in Symantec Pcanywhere 12.5
Symantec pcAnywhere 12.5 uses weak default permissions for the "Symantec\pcAnywhere\Hosts" folder, which allows local users to gain privileges by inserting a superuser .cif (aka caller or CallerID) file into the folder, and then using a pcAnywhere client to login as a local administrator.
local
low complexity
symantec
7.2
2005-12-01 CVE-2005-3934 Denial of Service vulnerability in pcAnywhere Authentication
Buffer overflow in Symantec pcAnywhere 11.0.1, 11.5.1, and all other 32-bit versions allows remote attackers to cause a denial of service (application crash) via unknown attack vectors.
network
low complexity
symantec
7.8
2005-06-16 CVE-2005-1970 Local Privileged Command Execution vulnerability in Symantec PCAnywhere
Symantec pcAnywhere 10.5x and 11.x before 11.5, with "Launch with Windows" enabled, allows local users with physical access to execute arbitrary commands via the Caller Properties feature.
local
low complexity
symantec
7.2
2003-12-15 CVE-2003-0936 Unspecified vulnerability in Symantec Pcanywhere 10.0/10.5/11.0
Symantec PCAnywhere 10.x and 11, when started as a service, allows attackers to gain SYSTEM privileges via the help interface using AWHOST32.exe.
local
low complexity
symantec
7.2
2000-04-09 CVE-2000-0273 Unspecified vulnerability in Symantec Pcanywhere 8.0/9.0
PCAnywhere allows remote attackers to cause a denial of service by terminating the connection before PCAnywhere provides a login prompt.
network
low complexity
symantec
5.0
1999-05-28 CVE-1999-1028 Unspecified vulnerability in Symantec Pcanywhere 8.0
Symantec pcAnywhere 8.0 allows remote attackers to cause a denial of service (CPU utilization) via a large amount of data to port 5631.
network
low complexity
symantec
5.0