Command Execution Vulnerability in Symantec pcAnywhere 10.5x and 11.x
CVE-2005-1970

Currently unrated

Key Information:

Vendor: Symantec
Status: Pcanywhere
Vendor: CVE Published:; 16 June 2005

Summary

The vulnerability in Symantec pcAnywhere versions 10.5.x and 11.x prior to 11.5 arises when the 'Launch with Windows' feature is enabled. This feature allows local users with physical access to execute arbitrary commands through the Caller Properties interface, potentially compromising system integrity. Proper configuration and access control measures are essential to mitigate the risks associated with this vulnerability.

References

http://secunia.com/advisories/15673

third-party-advisoryx_refsource_SECUNIA

http://www.securityfocus.com/bid/13933

vdb-entryx_refsource_BID

http://securitytracker.com/id?1014178

vdb-entryx_refsource_SECTRACK

Timeline

Vulnerability published
Jun 16, 2005
Vulnerability Reserved
Jun 14, 2005