ID de Prueba:	1.3.6.1.4.1.25623.1.0.802884
Categoría:	Buffer overflow
Título:	Symantec pcAnywhere 'awhost32' RCE Vulnerability
Resumen:	Symantec pcAnywhere is prone to a remote code execution (RCE) vulnerability.
Descripción:	Summary: Symantec pcAnywhere is prone to a remote code execution (RCE) vulnerability. Vulnerability Insight: The host services component 'awhost32' fails to filter crafted long login and authentication data sent on TCP port 5631, which could be exploited by remote attackers to cause a buffer overflow condition. Vulnerability Impact: Successful exploitation will allow attackers to cause buffer overflow condition or execute arbitrary code or cause a denial of service condition. Affected Software/OS: Symantec pcAnywhere version 12.5.x through 12.5.3 Symantec pcAnywhere Solution shipped with Altiris IT Management Suite 7.0 (12.5.x) Symantec pcAnywhere Solution shipped with Altiris IT Management Suite 7.1 (12.6.x) Solution: Upgrade to Symantec pcAnywhere 12.5 SP4 or pcAnywhere Solution 12.6.7 or Apply Symantec hotfix TECH182142. CVSS Score: 10.0 CVSS Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2011-3478 BugTraq ID: 51592 http://www.securityfocus.com/bid/51592 https://www.exploit-db.com/exploits/38599/ http://osvdb.org/show/osvdb/78532 http://secunia.com/advisories/48092 Common Vulnerability Exposure (CVE) ID: CVE-2011-3479 BugTraq ID: 51593 http://www.securityfocus.com/bid/51593 Common Vulnerability Exposure (CVE) ID: CVE-2012-0292 BugTraq ID: 52094 http://www.securityfocus.com/bid/52094 http://www.exploit-db.com/exploits/18493/ Common Vulnerability Exposure (CVE) ID: CVE-2012-0291 BugTraq ID: 51965 http://www.securityfocus.com/bid/51965
Copyright	Copyright (C) 2012 Greenbone AG

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.