CVE-2012-0292

Symantec pcAnywhere <= 12.5.3 - Denial of Service via Crafted TCP Session

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2012-0292. PoCs published by Johnathan Norman.

AI-analyzed exploit summary This exploit sends malformed packets to the PCAnywhere awhost32 service, causing it to crash. It targets a vulnerability in versions 12.5.0 build 463 and below, leading to a denial of service (DoS).

Description

The awhost32 service in Symantec pcAnywhere through 12.5.3, Altiris IT Management Suite pcAnywhere Solution 7.0 (aka 12.5.x) and 7.1 (aka 12.6.x), Altiris Client Management Suite pcAnywhere Solution 7.0 (aka 12.5.x) and 7.1 (aka 12.6.x), and Altiris Deployment Solution Remote pcAnywhere Solution 7.1 (aka 12.5.x and 12.6.x) allows remote attackers to cause a denial of service (daemon crash) via a crafted TCP session on port 5631.

Exploits (1)

exploitdb WORKING POC

by Johnathan Norman · pythondoswindows

https://www.exploit-db.com/exploits/18493

View Code ZIP pw:eip

This exploit sends malformed packets to the PCAnywhere awhost32 service, causing it to crash. It targets a vulnerability in versions 12.5.0 build 463 and below, leading to a denial of service (DoS).

Classification

Working Poc 90%

Attack Type

Dos

Complexity

Trivial

Reliability

Reliable

Target: Symantec PCAnywhere (12.5.0 build 463 and below)

No auth needed

Prerequisites: Network access to the target host · PCAnywhere service running on port 5631

MITRE ATT&CK

T1499 - Endpoint Denial of Service

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (4)

Core 4

Core References

Exploit vdb-entry x_refsource_bid

http://www.securityfocus.com/bid/52094

Exploit exploit x_refsource_exploit-db

http://www.exploit-db.com/exploits/18493/

Vendor Advisory x_refsource_confirm

http://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&year=2012&suid=20120301_00

Third Party Advisory third-party-advisory x_refsource_secunia

http://secunia.com/advisories/48092

Scores

EPSS 0.0717

EPSS Percentile 93.5%

Details

CWE

CWE-20

Status published

Products (21)

symantec/altiris_client_management_suite_pcanywhere_solution 7.0

symantec/altiris_climentent_manage_suite_pcanywhere_solution 7.1

symantec/altiris_deployment_solution_remote_pcanywhere_solution 7.1

symantec/altiris_it_management_suite_pcanywhere_solution 7.0

symantec/altiris_it_management_suite_pcanywhere_solution 7.1

symantec/pcanywhere 10.0

symantec/pcanywhere 10.5

symantec/pcanywhere 11.0

symantec/pcanywhere 11.0.1

symantec/pcanywhere 11.5

... and 11 more

Published Mar 08, 2012

Tracked Since Feb 18, 2026