Title

Multiple Vulnerabilities in Symantec pcAnywhere (Cat I impact)

Discussion

Symantec has released a security advisory addressing multiple vulnerabilities in Symantec pcAnywhere. Symantec pcAnywhere is a remote access and remote management software suite. To exploit these vulnerabilities, a remote attacker would utilize various tactics, techniques and procedures (TTPs). Successful exploitation of these vulnerabilities would allow an attacker to cause a Denial of Service condition, bypass security restrictions, execute arbitrary code and/or elevate privileges resulting in the compromise of affected systems. At this time, there are known exploits associated with at least one of these vulnerabilities; USCYBERCOM is not aware of any DoD related incidents.

Check Content

Fix Text

Additional Identifiers

Rule ID:

Vulnerability ID: V-31249

Group Title:

Expert Comments

CCIs tied to check.

Controls tied to check. These are derived from the CCIs shown above.