Public exploit available
Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2011-3478

CWE-287 ā€” Improper Authentication5 documents4 sources
Severity
10.0CRITICAL
EPSS
52.9%
top 2.05%
CISA KEV
Not in KEV
Exploit
PoC available
Public exploit / PoC exists
Affected products
1
Symantec Pcanywhere
Timeline
PublishedJan 25
Latest updateMay 14

Description

The host-services component in Symantec pcAnywhere 12.5.x through 12.5.3, and IT Management Suite pcAnywhere Solution 7.0 (aka 12.5.x) and 7.1 (aka 12.6.x), does not properly filter login and authentication data, which allows remote attackers to execute arbitrary code via a crafted session on TCP port 5631.

CVSS vector

AV:N/AC:L/C:C/I:C/A:CExploitability: 10.0 | Impact: 10.0

Affected Packages1 packages

ā–¶NVDsymantec/pcanywhere4 versions+3

šŸ”“Vulnerability Details

2
GHSA
GHSA-m4r6-h5gf-6mg9: The host-services component in Symantec pcAnywhere 12ā†—2022-05-14
ā–¶
CVEList
CVE-2011-3478: The host-services component in Symantec pcAnywhere 12ā†—2012-01-25
ā–¶

šŸ’„Exploits & PoCs

2
Exploit-DB
Symantec pcAnywhere 12.5.0 (Windows x86) - Remote Code Executionā†—2015-11-02
ā–¶
Exploit-DB
Symantec pcAnywhere 12.5.0 - 'Login' / 'Password' Remote Buffer Overflowā†—2012-06-27
ā–¶
CVE-2011-3478 (CRITICAL CVSS 10) | The host-services component in Syma | cvebase.io