Release date:
Updated on:
Affected Systems:
Symantec pcAnywhere 12.x
Symantec pcAnywhere 11.x
Description:
--------------------------------------------------------------------------------
Bugtraq id: 51965
Cve id: CVE-2012-0291
Symantec PCAnywhere is the world's best-selling remote control solution for managing servers and providing administrative support.
A security vulnerability exists in the pcAnywhere client or server when handling some unexpected input. Symantec pcAnywhere host service on TCP 5631 has an error in the authentication and filtering of external data for login and authentication, may cause application instability or crash.
<* Source: vendor
Link: http://www.symantec.com/security_response/securityupdates/detail.jsp? Fid = security_advisory & pvid = security_advisory & year = 2012 & suid = 2012424_00
*>
Suggestion:
--------------------------------------------------------------------------------
Vendor patch:
Symantec
--------
The vendor has released a patch to fix this security problem. Please download it from the vendor's homepage:
Http://www.symantec.com/business/security_response/