APP: PCAnywhere Denial of Service

This signature detects attempts to exploit a known vulnerability in Symantec pcAnywhere. It is due to improper boundary checking and can be exploited to cause a buffer overflow prior to authentication. A remote unauthenticated attacker can exploit this vulnerability to terminate the application, causing a denial-of-service condition.

Extended Description

Symantec pcAnywhere is vulnerable to a buffer overflow vulnerability. Because the flaw can be triggered prior to authentication, the vulnerability is exploitable by remote attackers without valid credentials. It is confirmed that the vulnerability can be exploited to cause a denial of service. Supported versions 11.0.1 and 11.5.1 are confirmed affected. Previous versions are vulnerable and users are advised to upgrade to the latest supported version. Patches are available.

Affected Products

Symantec pcanywhere

References

BugTraq: 15646

CVE: CVE-2005-3934

URL: http://www.frsirt.com/english/advisories/2005/2658 http://securityresponse.symantec.com/avcenter/security/Content/2005.11.29.html

Short Name

APP:PCANYWHERE:SERVER-DOS

Severity

Minor

Recommended

False

Recommended Action

Drop

APP: PCAnywhere Denial of Service

Extended Description

Affected Products

References

Found a potential security threat?