Weak Encryption in PcAnywhere 9.x by Symantec
CVE-2000-0300

Currently unrated

Key Information:

Vendor: Symantec
Status: Pcanywhere
Vendor: CVE Published:; 6 April 2000

What is CVE-2000-0300?

The PcAnywhere 9.x encryption technique is weak, enabling remote attackers to intercept and decrypt sensitive account information, including user credentials for both PcAnywhere and NT domain accounts. This significant flaw poses a serious risk of unauthorized access to secured systems, highlighting the necessity for stronger cryptographic practices.

References

http://www.securityfocus.com/bid/1093

vdb-entryx_refsource_BID

http://www.securityfocus.com/templates/archive.pike?list=...

mailing-listx_refsource_BUGTRAQ

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability Reserved
Apr 26, 2000
Vulnerability published
Apr 6, 2000