Arbitrary Command Execution via Caller Properties in Symantec pcAnywhere

Arbitrary Command Execution via Caller Properties in Symantec pcAnywhere

CVE-2005-1970 · HIGH Severity

AV:L/AC:L/AU:N/C:C/I:C/A:C

Symantec pcAnywhere 10.5x and 11.x before 11.5, with "Launch with Windows" enabled, allows local users with physical access to execute arbitrary commands via the Caller Properties feature.

Learn more about our Physical Security Assessment.