Описание
Symantec pcAnywhere 12.5.x through 12.5.3, and IT Management Suite pcAnywhere Solution 7.0 (aka 12.5.x) and 7.1 (aka 12.6.x), uses world-writable permissions for product-installation files, which allows local users to gain privileges by modifying a file.
Ссылки
- Vendor Advisory
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:symantec:pcanywhere:12.5:*:*:*:*:*:*:*
cpe:2.3:a:symantec:pcanywhere:12.5:sp1:*:*:*:*:*:*
cpe:2.3:a:symantec:pcanywhere:12.5:sp2:*:*:*:*:*:*
cpe:2.3:a:symantec:pcanywhere:12.5:sp3:*:*:*:*:*:*
cpe:2.3:a:symantec:pcanywhere:12.5.539:*:*:*:*:*:*:*
cpe:2.3:a:symantec:pcanywhere:12.6.65:*:*:*:*:*:*:*
cpe:2.3:a:symantec:pcanywhere:12.6.65:sp1:*:*:*:*:*:*
cpe:2.3:a:symantec:pcanywhere:12.6.7580:*:*:*:*:*:*:*
EPSS
Процентиль: 67%
0.00552
Низкий
6.8 Medium
CVSS2
Дефекты
CWE-264
Связанные уязвимости
github
больше 3 лет назад
Symantec pcAnywhere 12.5.x through 12.5.3, and IT Management Suite pcAnywhere Solution 7.0 (aka 12.5.x) and 7.1 (aka 12.6.x), uses world-writable permissions for product-installation files, which allows local users to gain privileges by modifying a file.
EPSS
Процентиль: 67%
0.00552
Низкий
6.8 Medium
CVSS2
Дефекты
CWE-264