Description
Symantec pcAnywhere 12.5.x through 12.5.3, and IT Management Suite pcAnywhere Solution 7.0 (aka 12.5.x) and 7.1 (aka 12.6.x), uses world-writable permissions for product-installation files, which allows local users to gain privileges by modifying a file.
Exploits (1)
References (3)
Core 3
Core References
Vendor Advisory x_refsource_confirm
http://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&year=2012&suid=20120124_00
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/48092
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/51593
Scores
EPSS
0.0028
EPSS Percentile
51.5%
Details
CWE
CWE-264
Status
published
Products (4)
symantec/pcanywhere
12.5 (4 CPE variants)
symantec/pcanywhere
12.5.539
symantec/pcanywhere
12.6.65 (2 CPE variants)
symantec/pcanywhere
12.6.7580
Published
Jan 25, 2012
Tracked Since
Feb 18, 2026