Symantec pcAnywhere 11.5.x and 12.0.x retains unencrypted login credentials for the most recent login within process memory, which allows local administrators to obtain the credentials by reading process memory, a different vulnerability than CVE-2006-3785.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
symantec pcanywhere 11.5 |
||
symantec pcanywhere 11.5.1 |
||
symantec pcanywhere 12.0 |