CVE-2012-0292
CVSS V2 Medium 5
CVSS V3 None
Description
The awhost32 service in Symantec pcAnywhere through 12.5.3, Altiris IT Management Suite pcAnywhere Solution 7.0 (aka 12.5.x) and 7.1 (aka 12.6.x), Altiris Client Management Suite pcAnywhere Solution 7.0 (aka 12.5.x) and 7.1 (aka 12.6.x), and Altiris Deployment Solution Remote pcAnywhere Solution 7.1 (aka 12.5.x and 12.6.x) allows remote attackers to cause a denial of service (daemon crash) via a crafted TCP session on port 5631.
Overview
- CVE ID
- CVE-2012-0292
- Assigner
- cve@mitre.org
- Vulnerability Status
- Modified
- Published Version
- 2012-03-08T04:15:02
- Last Modified Date
- 2018-01-06T02:29:29
Weakness Enumerations
CPE Configuration (Product)
CPE | Vulnerable | Operator | Version Start | Version End |
---|---|---|---|---|
cpe:2.3:a:symantec:pcanywhere:*:sp3:*:*:*:*:*:* | 1 | OR | 12.5 | |
cpe:2.3:a:symantec:pcanywhere:10.0:*:*:*:*:*:*:* | 1 | OR | ||
cpe:2.3:a:symantec:pcanywhere:10.5:*:*:*:*:*:*:* | 1 | OR | ||
cpe:2.3:a:symantec:pcanywhere:11.0:*:*:*:*:*:*:* | 1 | OR | ||
cpe:2.3:a:symantec:pcanywhere:11.0.1:*:*:*:*:*:*:* | 1 | OR | ||
cpe:2.3:a:symantec:pcanywhere:11.5:*:*:*:*:*:*:* | 1 | OR | ||
cpe:2.3:a:symantec:pcanywhere:11.5.1:*:*:*:*:*:*:* | 1 | OR | ||
cpe:2.3:a:symantec:pcanywhere:12.0:*:*:*:*:*:*:* | 1 | OR | ||
cpe:2.3:a:symantec:pcanywhere:12.0.1:*:*:*:*:*:*:* | 1 | OR | ||
cpe:2.3:a:symantec:pcanywhere:12.0.2:*:*:*:*:*:*:* | 1 | OR | ||
cpe:2.3:a:symantec:pcanywhere:12.0.3:*:*:*:*:*:*:* | 1 | OR | ||
cpe:2.3:a:symantec:pcanywhere:12.1:*:*:*:*:*:*:* | 1 | OR | ||
cpe:2.3:a:symantec:pcanywhere:12.5:*:*:*:*:*:*:* | 1 | OR | ||
cpe:2.3:a:symantec:pcanywhere:12.5:sp1:*:*:*:*:*:* | 1 | OR | ||
cpe:2.3:a:symantec:pcanywhere:12.5:sp2:*:*:*:*:*:* | 1 | OR | ||
cpe:2.3:a:symantec:pcanywhere:12.5.3:*:*:*:*:*:*:* | 1 | OR | ||
cpe:2.3:a:symantec:pcanywhere:12.5.265:*:*:*:*:*:*:* | 1 | OR | ||
cpe:2.3:a:symantec:pcanywhere:12.5.539:*:*:*:*:*:*:* | 1 | OR | ||
cpe:2.3:a:symantec:altiris_client_management_suite_pcanywhere_solution:7.0:*:*:*:*:*:*:* | 1 | OR | ||
cpe:2.3:a:symantec:altiris_climentent_manage_suite_pcanywhere_solution:7.1:*:*:*:*:*:*:* | 1 | OR | ||
cpe:2.3:a:symantec:altiris_deployment_solution_remote_pcanywhere_solution:7.1:*:*:*:*:*:*:* | 1 | OR | ||
cpe:2.3:a:symantec:altiris_it_management_suite_pcanywhere_solution:7.0:*:*:*:*:*:*:* | 1 | OR | ||
cpe:2.3:a:symantec:altiris_it_management_suite_pcanywhere_solution:7.1:*:*:*:*:*:*:* | 1 | OR |
CVSS Version 2
- Version
- 2.0
- Vector String
- AV:N/AC:L/Au:N/C:N/I:N/A:P
- Access Vector
- NETWORK
- Access Compatibility
- LOW
- Authentication
- NONE
- Confidentiality Impact
- NONE
- Integrity Impact
- NONE
- Availability Impact
- PARTIAL
- Base Score
- 5
- Severity
- MEDIUM
- Exploitability Score
- 10
- Impact Score
- 2.9
References
Reference URL | Reference Tags |
---|---|
http://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&year=2012&suid=20120301_00 | Vendor Advisory |
http://www.exploit-db.com/exploits/18493/ | Exploit |
http://www.securityfocus.com/bid/52094 | Exploit |
http://secunia.com/advisories/48092 |
Sources
Source Name | Source URL |
---|---|
NIST | https://nvd.nist.gov/vuln/detail/CVE-2012-0292 |
MITRE | https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-0292 |
History
Created | Old Value | New Value | Data Type | Notes |
---|---|---|---|---|
2022-05-10 18:51:13 | Added to TrackCVE |