Family: Windows --> Category: infos
pcAnywhere Launch with Windows Privilege Escalation Vulnerability Vulnerability Scan
Vulnerability Scan Summary
Checks for Launch with Windows privilege escalation vulnerability in pcAnywhere
Detailed Explanation for this Vulnerability Test
The remote control software on the remote host is affected by a local
privilege escalation flaw.
The remote host is running pcAnywhere, a remote control software
program for Windows.
According to the Windows registry, the installed version of pcAnywhere
fails to prevent a local user from gaining SYSTEM rights by
manipulating the 'Caller Properties' feature to run arbitrary commands
when pcAnywhere is configured to run as a service.
See also :
Upgrade to pcAnywhere version 11.5 or later.
Medium / CVSS Base Score : 4
Click HERE for more information and discussions on this network vulnerability scan.