Back to search
CVE-2009-0538
Published: Mar 18, 2009
Modified: Aug 7, 2024
PUBLISHED
Description
Format string vulnerability in Symantec pcAnywhere before 12.5 SP1 allows local users to read and modify arbitrary memory locations, and cause a denial of service (application crash) or possibly have unspecified other impact, via format string specifiers in the pathname of a remote control file (aka .CHF file).
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
33845
vdb-entry
x_refsource_BID
34305
third-party-advisory
x_refsource_SECUNIA
1021855
vdb-entry
x_refsource_SECTRACK
symantec-pcanywhere-unspecified-dos(49291)
vdb-entry
x_refsource_XF
52797
vdb-entry
x_refsource_OSVDB
ADV-2009-0755
vdb-entry
x_refsource_VUPEN
20090318 Layered Defense Research Advisory: Format String Vulnerablity in Symantec PcAnywhere v10-12.5
mailing-list
x_refsource_BUGTRAQ
http://www.layereddefense.com/pcanywhere17mar.html
x_refsource_MISC
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now