CVE-2012-0290

Symantec pcAnywhere through 12.5.3, Altiris IT Management Suite pcAnywhere Solution 7.0 (aka 12.5.x) and 7.1 (aka 12.6.x), Altiris Client Management Suite pcAnywhere Solution 7.0 (aka 12.5.x) and 7.1 (aka 12.6.x), and Altiris Deployment Solution Remote pcAnywhere Solution 7.1 (aka 12.5.x and 12.6.x) do not properly handle the client state after abnormal termination of a remote session, which allows remote attackers to obtain access to the client by leveraging an "open client session."
Severity
UNKNOWN
AV:N/AC:L/Au:N/C:C/I:C/A:C
Atk. Vector
NETWORK
Atk. Complexity
LOW
Base Score
CVSS 3.x
EPSS Score
Percentile: 82%
VendorProductVersion
symantecpcanywhere
𝑥
≤ 12.5.3
symantecpcanywhere
5.0
symantecpcanywhere
8.0
symantecpcanywhere
9.2
symantecpcanywhere
10.5
symantecpcanywhere
11.5
symantecpcanywhere
11.5.1
symantecpcanywhere
12.1
symantecpcanywhere
12.5
symantecpcanywhere
12.5
symantecpcanywhere
12.5
symantecpcanywhere
12.5.265
symantecpcanywhere
12.5
symantecpcanywhere
12.5
symantecpcanywhere
12.5
symantecpcanywhere
12.5
symantecpcanywhere
12.5.539
symantecpcanywhere
12.6.65
symantecpcanywhere
12.6.7580
symantecaltiris_client_management_suite_pcanywhere_solution
12.5
symantecaltiris_client_management_suite_pcanywhere_solution
12.5
symantecaltiris_client_management_suite_pcanywhere_solution
12.5
symantecaltiris_client_management_suite_pcanywhere_solution
12.6
symantecaltiris_client_management_suite_pcanywhere_solution
12.6
symantecaltiris_client_management_suite_pcanywhere_solution
12.6
symantecaltiris_deployment_solution_remote_pcanywhere_solution
12.5
symantecaltiris_deployment_solution_remote_pcanywhere_solution
12.5
symantecaltiris_deployment_solution_remote_pcanywhere_solution
12.5
symantecaltiris_deployment_solution_remote_pcanywhere_solution
12.6
symantecaltiris_deployment_solution_remote_pcanywhere_solution
12.6
symantecaltiris_deployment_solution_remote_pcanywhere_solution
12.6
𝑥
= Vulnerable software versions