Vulnerability Description
Symantec pcAnywhere 10.5x and 11.x before 11.5, with "Launch with Windows" enabled, allows local users with physical access to execute arbitrary commands via the Caller Properties feature.
CVSS Score
7.2
HIGH
AV:L/AC:L/Au:N/C:C/I:C/A:C
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Symantec | Pcanywhere | 8.0.1 |
References
- http://secunia.com/advisories/15673
- http://securityresponse.symantec.com/avcenter/security/Content/2005.06.10.htmlPatchVendor Advisory
- http://securitytracker.com/id?1014178
- http://www.securityfocus.com/bid/13933Patch
- http://secunia.com/advisories/15673
- http://securityresponse.symantec.com/avcenter/security/Content/2005.06.10.htmlPatchVendor Advisory
- http://securitytracker.com/id?1014178
- http://www.securityfocus.com/bid/13933Patch
FAQ
What is CVE-2005-1970?
CVE-2005-1970 is a vulnerability with a CVSS score of 7.2 (HIGH). Symantec pcAnywhere 10.5x and 11.x before 11.5, with "Launch with Windows" enabled, allows local users with physical access to execute arbitrary commands via the Caller Properties feature.
How severe is CVE-2005-1970?
CVE-2005-1970 has been rated HIGH with a CVSS base score of 7.2/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2005-1970?
Check the references section above for vendor advisories and patch information. Affected products include: Symantec Pcanywhere.