Exploitation Summary
EIP tracks 1 public exploit for CVE-2011-3479. PoCs published by Edward Torkington.
AI-analyzed exploit summary This is a writeup describing a local privilege escalation vulnerability in Symantec pcAnywhere due to insecure file permissions on key executables. The vulnerability allows any user to overwrite critical binaries, leading to privilege escalation when executed by an admin or SYSTEM.
Description
Symantec pcAnywhere 12.5.x through 12.5.3, and IT Management Suite pcAnywhere Solution 7.0 (aka 12.5.x) and 7.1 (aka 12.6.x), uses world-writable permissions for product-installation files, which allows local users to gain privileges by modifying a file.
Exploits (1)
This is a writeup describing a local privilege escalation vulnerability in Symantec pcAnywhere due to insecure file permissions on key executables. The vulnerability allows any user to overwrite critical binaries, leading to privilege escalation when executed by an admin or SYSTEM.