Initial Publication Date: Advisory Status: Advisory Severity: Legacy ID
10 Jun 2005 Closed Medium
Symantec pcAnywhere provides the option to run user defined commands when the remote host is connected. Enabling the “Launch with Windows” from the Host Properties Settings tab configures the pcAnyware host to run as a service with Local System privileges.
Affected Products (Consumer and Enterprise versions)
Symantec pcAnywhere All unsupported versions prior to 10.5x Symantec pcAnywhere version 10.5x Symantec pcAnywhere version 11x
Additional Product Information
Products Not Affected
Symantec pcAnywhere 11.5
Note: Only Symantec products indicated above are potentially vulnerable. All other Symantec products are NOT affected
A non-privileged user with physical access to the system can potentially manipulate the Caller Properties feature to run arbitrary commands that will be executed with system level privileges when the system is restarted. This could potentially allow them to gain unauthorized Local System privilege on the targeted system.
Symantec has released a patch to address this issue. The patch can be downloaded from the Symantec technical support site. This patch ensures all commands launched through "Command to execute after connection" are launched within the scope of the logged in user’s access rights.
Symantec is not aware of any active attempts against or organizations impacted by this issue.
Patches for this issue can be downloaded from the following locations:
Select your supported version of Symantec pcAnywhere and follow the instructions to download the appropriate update.
As a part of normal best practices, users should keep vendor-supplied patches for all application software and operating systems up-to-date. Symantec strongly recommends any affected customers update their product immediately to protect against these types of threats
This is machine translated content
Login to Subscribe
Please login to set up your
Would you like to be subscribed to future notifications for this article?
For security reasons, your link to this document has expired. Please click on the attachment link to access this file.
The attachment that you are looking for no longer exists.
There has been an issue retrieving your attachment. Please try again.
Currently server is down.
Didn't find the article you were looking for? Try these resources.