CVE-2006-3784

CVE-2006-3784 · HIGH Severity

AV:L/AC:L/AU:N/C:C/I:C/A:C

Symantec pcAnywhere 12.5 uses weak default permissions for the "Symantec\pcAnywhere\Hosts" folder, which allows local users to gain privileges by inserting a superuser .cif (aka caller or CallerID) file into the folder, and then using a pcAnywhere client to login as a local administrator.

Learn more about our User Device Pen Test.