1. CVE-Search
  2. CVE-2012-0290
ID CVE-2012-0290
Summary Symantec pcAnywhere through 12.5.3, Altiris IT Management Suite pcAnywhere Solution 7.0 (aka 12.5.x) and 7.1 (aka 12.6.x), Altiris Client Management Suite pcAnywhere Solution 7.0 (aka 12.5.x) and 7.1 (aka 12.6.x), and Altiris Deployment Solution Remote pcAnywhere Solution 7.1 (aka 12.5.x and 12.6.x) do not properly handle the client state after abnormal termination of a remote session, which allows remote attackers to obtain access to the client by leveraging an "open client session."
References
Vulnerable Configurations
  • cpe:2.3:a:symantec:pcanywhere:5.0:*:*:*:*:*:*:*
    cpe:2.3:a:symantec:pcanywhere:5.0:*:*:*:*:*:*:*
  • cpe:2.3:a:symantec:pcanywhere:8.0:*:*:*:*:*:*:*
    cpe:2.3:a:symantec:pcanywhere:8.0:*:*:*:*:*:*:*
  • cpe:2.3:a:symantec:pcanywhere:9.2:*:*:*:*:*:*:*
    cpe:2.3:a:symantec:pcanywhere:9.2:*:*:*:*:*:*:*
  • cpe:2.3:a:symantec:pcanywhere:10.5:*:*:*:*:*:*:*
    cpe:2.3:a:symantec:pcanywhere:10.5:*:*:*:*:*:*:*
  • cpe:2.3:a:symantec:pcanywhere:11.5:*:*:*:*:*:*:*
    cpe:2.3:a:symantec:pcanywhere:11.5:*:*:*:*:*:*:*
  • cpe:2.3:a:symantec:pcanywhere:11.5.1:*:*:*:*:*:*:*
    cpe:2.3:a:symantec:pcanywhere:11.5.1:*:*:*:*:*:*:*
  • cpe:2.3:a:symantec:pcanywhere:12.1:*:*:*:*:*:*:*
    cpe:2.3:a:symantec:pcanywhere:12.1:*:*:*:*:*:*:*
  • cpe:2.3:a:symantec:pcanywhere:12.5:sp1:*:*:*:*:*:*
    cpe:2.3:a:symantec:pcanywhere:12.5:sp1:*:*:*:*:*:*
  • cpe:2.3:a:symantec:pcanywhere:12.5:sp2:*:*:*:*:*:*
    cpe:2.3:a:symantec:pcanywhere:12.5:sp2:*:*:*:*:*:*
  • cpe:2.3:a:symantec:pcanywhere:12.5:sp3:*:*:*:*:*:*
    cpe:2.3:a:symantec:pcanywhere:12.5:sp3:*:*:*:*:*:*
  • cpe:2.3:a:symantec:pcanywhere:-:*:*:*:*:*:*:*
    cpe:2.3:a:symantec:pcanywhere:-:*:*:*:*:*:*:*
  • cpe:2.3:a:symantec:pcanywhere:8.0.1:*:*:*:*:*:*:*
    cpe:2.3:a:symantec:pcanywhere:8.0.1:*:*:*:*:*:*:*
  • cpe:2.3:a:symantec:pcanywhere:8.0.2:*:*:*:*:*:*:*
    cpe:2.3:a:symantec:pcanywhere:8.0.2:*:*:*:*:*:*:*
  • cpe:2.3:a:symantec:pcanywhere:9.0:*:*:*:*:*:*:*
    cpe:2.3:a:symantec:pcanywhere:9.0:*:*:*:*:*:*:*
  • cpe:2.3:a:symantec:pcanywhere:9.0.1:*:*:*:*:*:*:*
    cpe:2.3:a:symantec:pcanywhere:9.0.1:*:*:*:*:*:*:*
  • cpe:2.3:a:symantec:pcanywhere:10.0:*:*:*:*:*:*:*
    cpe:2.3:a:symantec:pcanywhere:10.0:*:*:*:*:*:*:*
  • cpe:2.3:a:symantec:pcanywhere:11.0:*:*:*:*:*:*:*
    cpe:2.3:a:symantec:pcanywhere:11.0:*:*:*:*:*:*:*
  • cpe:2.3:a:symantec:pcanywhere:11.0.0.730:*:*:*:*:*:*:*
    cpe:2.3:a:symantec:pcanywhere:11.0.0.730:*:*:*:*:*:*:*
  • cpe:2.3:a:symantec:pcanywhere:11.0.1:*:*:*:*:*:*:*
    cpe:2.3:a:symantec:pcanywhere:11.0.1:*:*:*:*:*:*:*
  • cpe:2.3:a:symantec:pcanywhere:11.0.1.764:*:*:*:*:*:*:*
    cpe:2.3:a:symantec:pcanywhere:11.0.1.764:*:*:*:*:*:*:*
  • cpe:2.3:a:symantec:pcanywhere:12.0:*:*:*:*:*:*:*
    cpe:2.3:a:symantec:pcanywhere:12.0:*:*:*:*:*:*:*
  • cpe:2.3:a:symantec:pcanywhere:12.1.0:*:*:*:*:*:*:*
    cpe:2.3:a:symantec:pcanywhere:12.1.0:*:*:*:*:*:*:*
  • cpe:2.3:a:symantec:pcanywhere:12.5.265:*:*:*:*:*:*:*
    cpe:2.3:a:symantec:pcanywhere:12.5.265:*:*:*:*:*:*:*
  • cpe:2.3:a:symantec:pcanywhere:12.5:*:*:*:*:*:*:*
    cpe:2.3:a:symantec:pcanywhere:12.5:*:*:*:*:*:*:*
  • cpe:2.3:a:symantec:pcanywhere:12.5.539:*:*:*:*:*:*:*
    cpe:2.3:a:symantec:pcanywhere:12.5.539:*:*:*:*:*:*:*
  • cpe:2.3:a:symantec:pcanywhere:12.6.65:*:*:*:*:*:*:*
    cpe:2.3:a:symantec:pcanywhere:12.6.65:*:*:*:*:*:*:*
  • cpe:2.3:a:symantec:pcanywhere:12.6.7580:*:*:*:*:*:*:*
    cpe:2.3:a:symantec:pcanywhere:12.6.7580:*:*:*:*:*:*:*
  • cpe:2.3:a:symantec:altiris_client_management_suite_pcanywhere_solution:12.5:*:*:*:*:*:*:*
    cpe:2.3:a:symantec:altiris_client_management_suite_pcanywhere_solution:12.5:*:*:*:*:*:*:*
  • cpe:2.3:a:symantec:altiris_client_management_suite_pcanywhere_solution:12.5:sp1:*:*:*:*:*:*
    cpe:2.3:a:symantec:altiris_client_management_suite_pcanywhere_solution:12.5:sp1:*:*:*:*:*:*
  • cpe:2.3:a:symantec:altiris_client_management_suite_pcanywhere_solution:12.5:sp2:*:*:*:*:*:*
    cpe:2.3:a:symantec:altiris_client_management_suite_pcanywhere_solution:12.5:sp2:*:*:*:*:*:*
  • cpe:2.3:a:symantec:altiris_client_management_suite_pcanywhere_solution:12.6:*:*:*:*:*:*:*
    cpe:2.3:a:symantec:altiris_client_management_suite_pcanywhere_solution:12.6:*:*:*:*:*:*:*
  • cpe:2.3:a:symantec:altiris_client_management_suite_pcanywhere_solution:12.6:sp1:*:*:*:*:*:*
    cpe:2.3:a:symantec:altiris_client_management_suite_pcanywhere_solution:12.6:sp1:*:*:*:*:*:*
  • cpe:2.3:a:symantec:altiris_client_management_suite_pcanywhere_solution:12.6:sp2:*:*:*:*:*:*
    cpe:2.3:a:symantec:altiris_client_management_suite_pcanywhere_solution:12.6:sp2:*:*:*:*:*:*
  • cpe:2.3:a:symantec:altiris_deployment_solution_remote_pcanywhere_solution:12.5:*:*:*:*:*:*:*
    cpe:2.3:a:symantec:altiris_deployment_solution_remote_pcanywhere_solution:12.5:*:*:*:*:*:*:*
  • cpe:2.3:a:symantec:altiris_deployment_solution_remote_pcanywhere_solution:12.5:sp1:*:*:*:*:*:*
    cpe:2.3:a:symantec:altiris_deployment_solution_remote_pcanywhere_solution:12.5:sp1:*:*:*:*:*:*
  • cpe:2.3:a:symantec:altiris_deployment_solution_remote_pcanywhere_solution:12.5:sp2:*:*:*:*:*:*
    cpe:2.3:a:symantec:altiris_deployment_solution_remote_pcanywhere_solution:12.5:sp2:*:*:*:*:*:*
  • cpe:2.3:a:symantec:altiris_deployment_solution_remote_pcanywhere_solution:12.6:*:*:*:*:*:*:*
    cpe:2.3:a:symantec:altiris_deployment_solution_remote_pcanywhere_solution:12.6:*:*:*:*:*:*:*
  • cpe:2.3:a:symantec:altiris_deployment_solution_remote_pcanywhere_solution:12.6:sp1:*:*:*:*:*:*
    cpe:2.3:a:symantec:altiris_deployment_solution_remote_pcanywhere_solution:12.6:sp1:*:*:*:*:*:*
  • cpe:2.3:a:symantec:altiris_deployment_solution_remote_pcanywhere_solution:12.6:sp2:*:*:*:*:*:*
    cpe:2.3:a:symantec:altiris_deployment_solution_remote_pcanywhere_solution:12.6:sp2:*:*:*:*:*:*
CVSS
Base: 10.0 (as of 06-01-2018 - 02:29)
Impact:
Exploitability:
CWE NVD-CWE-noinfo
CAPEC
Access
VectorComplexityAuthentication
NETWORK LOW NONE
Impact
ConfidentialityIntegrityAvailability
COMPLETE COMPLETE COMPLETE
cvss-vector via4 AV:N/AC:L/Au:N/C:C/I:C/A:C
refmap via4
bid 51862
confirm http://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&year=2012&suid=20120124_00
secunia 48092
xf pcanywhere-unauth-access(72996)
Last major update 06-01-2018 - 02:29
Published 06-02-2012 - 20:55
Last modified 06-01-2018 - 02:29
Back to Top