Lucene search
MitreCVE-2007-2619HistoryMay 11, 2007 - 4:19 p.m.
CVE-2007-2619
2007-05-1116:19:00
mitre
web.nvd.nist.gov
29
symantec
pcanywhere
login credentials
unencrypted
process memory
vulnerability
CVSS2
4.6
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
COMPLETE
Integrity Impact
NONE
Availability Impact
NONE
AV:L/AC:L/Au:S/C:C/I:N/A:N
AI Score
6.3
Confidence
Low
EPSS
0.001
Percentile
21.2%
Symantec pcAnywhere 11.5.x and 12.0.x retains unencrypted login credentials for the most recent login within process memory, which allows local administrators to obtain the credentials by reading process memory, a different vulnerability than CVE-2006-3785.
Affected configurations
Node
symantecpcanywhereMatch11.5
ORsymantecpcanywhereMatch11.5.1
ORsymantecpcanywhereMatch12.0
| Vendor | Product | Version | CPE |
|---|---|---|---|
| symantec | pcanywhere | 11.5 | cpe:2.3:a:symantec:pcanywhere:11.5:*:*:*:*:*:*:* |
| symantec | pcanywhere | 11.5.1 | cpe:2.3:a:symantec:pcanywhere:11.5.1:*:*:*:*:*:*:* |
| symantec | pcanywhere | 12.0 | cpe:2.3:a:symantec:pcanywhere:12.0:*:*:*:*:*:*:* |
Related
prion
prion
Memory corruption
2007-05-11 16:19:00
nvd
nvd
CVE-2007-2619
2007-05-11 16:19:00
CVE-2006-3785
2006-07-24 12:19:00
cvelist
cvelist
CVE-2007-2619
2007-05-11 16:00:00
CVE-2006-3785
2006-07-21 21:00:00
cve
cve
CVE-2006-3785
2006-07-24 12:19:00
CVSS2
4.6
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
COMPLETE
Integrity Impact
NONE
Availability Impact
NONE
AV:L/AC:L/Au:S/C:C/I:N/A:N
AI Score
6.3
Confidence
Low
EPSS
0.001
Percentile
21.2%
Related for CVE-2007-2619