Local Privilege Escalation Vulnerability in Symantec pcAnywhere and IT Management Suite
CVE-2011-3479

Currently unrated

Key Information:

Vendor: Symantec
Status: Pcanywhere
Vendor: CVE Published:; 25 January 2012

Summary

A vulnerability exists in Symantec pcAnywhere and IT Management Suite due to world-writable permissions on installation files. This flaw enables local users to exploit the file permissions to gain higher privileges, potentially leading to unauthorized access or modifications within the system. Users are advised to apply security updates to mitigate associated risks.

References

http://www.symantec.com/security_response/securityupdates...

x_refsource_CONFIRM

http://secunia.com/advisories/48092

third-party-advisoryx_refsource_SECUNIA

http://www.securityfocus.com/bid/51593

vdb-entryx_refsource_BID

Timeline

Vulnerability published
Jan 25, 2012
Vulnerability Reserved
Sep 14, 2011