Vulnerability Description
Symantec pcAnywhere 12.5.x through 12.5.3, and IT Management Suite pcAnywhere Solution 7.0 (aka 12.5.x) and 7.1 (aka 12.6.x), uses world-writable permissions for product-installation files, which allows local users to gain privileges by modifying a file.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Symantec | Pcanywhere | 12.5 |
Related Weaknesses (CWE)
References
- http://secunia.com/advisories/48092
- http://www.securityfocus.com/bid/51593
- http://www.symantec.com/security_response/securityupdates/detail.jsp?fid=securitVendor Advisory
- http://secunia.com/advisories/48092
- http://www.securityfocus.com/bid/51593
- http://www.symantec.com/security_response/securityupdates/detail.jsp?fid=securitVendor Advisory
FAQ
What is CVE-2011-3479?
CVE-2011-3479 is a vulnerability with a CVSS score of 6.8 (MEDIUM). Symantec pcAnywhere 12.5.x through 12.5.3, and IT Management Suite pcAnywhere Solution 7.0 (aka 12.5.x) and 7.1 (aka 12.6.x), uses world-writable permissions for product-installation files, which allo...
How severe is CVE-2011-3479?
CVE-2011-3479 has been rated MEDIUM with a CVSS base score of 6.8/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2011-3479?
Check the references section above for vendor advisories and patch information. Affected products include: Symantec Pcanywhere.