CVE-2011-3479

Symantec pcAnywhere 12.5.x through 12.5.3, and IT Management Suite pcAnywhere Solution 7.0 (aka 12.5.x) and 7.1 (aka 12.6.x), uses world-writable permissions for product-installation files, which allows local users to gain privileges by modifying a file.

Published: Jan 25, 2012
Updated: Apr 13, 2023
CVE: CVE-2011-3479
Severity: Medium
Exploit:

CVSS v2:

Severity: Medium
Score: 6.8
AV:L/AC:L/Au:S/C:C/I:C/A:C

CWEs:

CWE-264

Affected Software
References

Software	From	Fixed in
symantec / pcanywhere	12.5	12.5.x
symantec / pcanywhere	12.6.7580	12.6.7580.x
symantec / pcanywhere	12.6.65-sp1	12.6.65-sp1.x
symantec / pcanywhere	12.5-sp3	12.5-sp3.x
symantec / pcanywhere	12.6.65	12.6.65.x
symantec / pcanywhere	12.5-sp1	12.5-sp1.x
symantec / pcanywhere	12.5-sp2	12.5-sp2.x
symantec / pcanywhere	12.5.539	12.5.539.x

http://secunia.com/advisories/48092
http://www.securityfocus.com/bid/51593
http://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&year=2012&suid=20120124_00

Vulnerability Database

289,784

CVE-2011-3479