The host-services component in Symantec pcAnywhere 12.5.x up to and including 12.5.3, and IT Management Suite pcAnywhere Solution 7.0 (aka 12.5.x) and 7.1 (aka 12.6.x), does not properly filter login and authentication data, which allows remote malicious users to execute arbitrary code via a crafted session on TCP port 5631.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
symantec pcanywhere 12.6.7580 |
||
symantec pcanywhere 12.5.539 |
||
symantec pcanywhere 12.5 |
||
symantec pcanywhere 12.6.65 |