CVE-2012-0290

Published Feb 6, 2012

Last updated 7 years ago

CVSS info 10.0

Overview

Description: Symantec pcAnywhere through 12.5.3, Altiris IT Management Suite pcAnywhere Solution 7.0 (aka 12.5.x) and 7.1 (aka 12.6.x), Altiris Client Management Suite pcAnywhere Solution 7.0 (aka 12.5.x) and 7.1 (aka 12.6.x), and Altiris Deployment Solution Remote pcAnywhere Solution 7.1 (aka 12.5.x and 12.6.x) do not properly handle the client state after abnormal termination of a remote session, which allows remote attackers to obtain access to the client by leveraging an "open client session."
Source: cve@mitre.org
NVD status: Modified

Risk scores

CVSS 2.0

Type: Primary
Base score: 10
Impact score: 10
Exploitability score: 10
Vector string: AV:N/AC:L/Au:N/C:C/I:C/A:C

Weaknesses

nvd@nist.gov: NVD-CWE-noinfo

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:symantec:pcanywhere:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "688690CE-8382-4C88-A0E5-AC0021D9D440",
            "versionEndIncluding": "12.5.3"
          },
          {
            "criteria": "cpe:2.3:a:symantec:pcanywhere:5.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "23912E29-CA68-4C9A-93DF-586E42CA52F7"
          },
          {
            "criteria": "cpe:2.3:a:symantec:pcanywhere:8.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "447EE4D0-ED48-490E-BC1C-831A165CFF29"
          },
          {
            "criteria": "cpe:2.3:a:symantec:pcanywhere:9.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "DFDF9CE6-93A7-49EC-B6B5-428C7517E902"
          },
          {
            "criteria": "cpe:2.3:a:symantec:pcanywhere:10.5:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9F0A6A97-1EFF-41C0-AAAA-B357C4C801F4"
          },
          {
            "criteria": "cpe:2.3:a:symantec:pcanywhere:11.5:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A496D973-4BC8-4377-8C84-8F2CB281AEE1"
          },
          {
            "criteria": "cpe:2.3:a:symantec:pcanywhere:11.5.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "3FF752E6-45B4-4D6D-90F8-AA69DB5C2775"
          },
          {
            "criteria": "cpe:2.3:a:symantec:pcanywhere:12.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "ECE0E3DD-23F9-4ACD-BF9D-986CE5232D4E"
          },
          {
            "criteria": "cpe:2.3:a:symantec:pcanywhere:12.5:sp1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "39F3C225-B890-47BB-9898-0EFEC969B74D"
          },
          {
            "criteria": "cpe:2.3:a:symantec:pcanywhere:12.5:sp2:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A4C296DE-5385-4C59-8824-B1695D38C332"
          },
          {
            "criteria": "cpe:2.3:a:symantec:pcanywhere:12.5:sp3:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F1C797C5-7F76-4ECE-859C-B928F380A08D"
          },
          {
            "criteria": "cpe:2.3:a:symantec:pcanywhere:12.5.265:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "EE75BA8C-3E29-45CC-BD06-E504513A55AD"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:symantec:pcanywhere:12.5:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "067CAB0F-D513-4A70-B6C6-06EE290A2F6F"
          },
          {
            "criteria": "cpe:2.3:a:symantec:pcanywhere:12.5:sp1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "39F3C225-B890-47BB-9898-0EFEC969B74D"
          },
          {
            "criteria": "cpe:2.3:a:symantec:pcanywhere:12.5:sp2:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A4C296DE-5385-4C59-8824-B1695D38C332"
          },
          {
            "criteria": "cpe:2.3:a:symantec:pcanywhere:12.5:sp3:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F1C797C5-7F76-4ECE-859C-B928F380A08D"
          },
          {
            "criteria": "cpe:2.3:a:symantec:pcanywhere:12.5.539:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A9C845AC-3C09-4676-964F-644A01D133CE"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:symantec:pcanywhere:12.6.65:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D0D0B814-A9C3-4D47-B1C5-59DE0CFEDCF4"
          },
          {
            "criteria": "cpe:2.3:a:symantec:pcanywhere:12.6.7580:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "92218E59-B767-498A-8F09-20202AE643E0"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:symantec:altiris_client_management_suite_pcanywhere_solution:12.5:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "611D90A6-7B2C-4C40-9C70-EC5B2695FD3E"
          },
          {
            "criteria": "cpe:2.3:a:symantec:altiris_client_management_suite_pcanywhere_solution:12.5:sp1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "65C22E74-4DBF-4783-B2AF-57C2D58B193D"
          },
          {
            "criteria": "cpe:2.3:a:symantec:altiris_client_management_suite_pcanywhere_solution:12.5:sp2:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "04B4C5CC-520C-4005-B01E-4EBC22ABE5FC"
          },
          {
            "criteria": "cpe:2.3:a:symantec:altiris_client_management_suite_pcanywhere_solution:12.6:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8F8C91B1-46E7-4CA2-8E96-FF16626BFD8B"
          },
          {
            "criteria": "cpe:2.3:a:symantec:altiris_client_management_suite_pcanywhere_solution:12.6:sp1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "CEE27DB7-3B9D-487F-83BD-D1D8C1B0E770"
          },
          {
            "criteria": "cpe:2.3:a:symantec:altiris_client_management_suite_pcanywhere_solution:12.6:sp2:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "7F8166A3-90AC-4515-84C2-9E137C66594C"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:symantec:altiris_deployment_solution_remote_pcanywhere_solution:12.5:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "2811AA0D-0B6F-49EC-9234-A1836EDBA60B"
          },
          {
            "criteria": "cpe:2.3:a:symantec:altiris_deployment_solution_remote_pcanywhere_solution:12.5:sp1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "48193B5E-994F-4F66-BE15-A44BBE4364C3"
          },
          {
            "criteria": "cpe:2.3:a:symantec:altiris_deployment_solution_remote_pcanywhere_solution:12.5:sp2:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "FE450255-FE0F-41CE-9BDC-C7870DAB13CA"
          },
          {
            "criteria": "cpe:2.3:a:symantec:altiris_deployment_solution_remote_pcanywhere_solution:12.6:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "1CB20686-F8E4-49A3-9A82-68C929B88FBF"
          },
          {
            "criteria": "cpe:2.3:a:symantec:altiris_deployment_solution_remote_pcanywhere_solution:12.6:sp1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9BA4BAF7-4E24-40BD-8D9E-801BAE52C2D2"
          },
          {
            "criteria": "cpe:2.3:a:symantec:altiris_deployment_solution_remote_pcanywhere_solution:12.6:sp2:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "53AC95BF-9CD4-47C6-87A7-531EA27AD864"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

Overview

Risk scores

CVSS 2.0

Weaknesses

Social media

Configurations

References