CVE-2009-0538

Currently unrated

Key Information:

Vendor: Symantec
Status: Pcanywhere
Vendor: CVE Published:; 18 March 2009

Summary

Format string vulnerability in Symantec pcAnywhere before 12.5 SP1 allows local users to read and modify arbitrary memory locations, and cause a denial of service (application crash) or possibly have unspecified other impact, via format string specifiers in the pathname of a remote control file (aka .CHF file).

References

http://securityresponse.symantec.com/avcenter/security/Co...

x_refsource_CONFIRM

http://www.securityfocus.com/bid/33845

vdb-entryx_refsource_BID

http://secunia.com/advisories/34305

third-party-advisoryx_refsource_SECUNIA

Timeline

Vulnerability published
Mar 18, 2009
Vulnerability Reserved
Feb 12, 2009