Yesterday Symantec issued a security advisory for users of pcAnywhere asking users of the product to delete or disable it immediately until they release a set of updates that resolve currently known vulnerability risks.
Users of PC Anywhere may be at risk because of the theft of Symantec source code in 2006. Attackers have had plenty of time to study the code looking for vulnerabilities that could allow them to use the remote-access software to remotely access pcAnywhere installations. If attackers successfully exploit vulnerabilities in the code, it could give attackers unprecedented access to corporate networks around the world.
According to Symantec's security advisory, "All pcAnywhere 12.0, 12.1, and 12.5 customers are at increased risk, as well as customers using prior versions of the product."
The remote-access software runs on Windows, Mac OS X, Linux, and the PocketPC platform.
Symantec's PC Anywhere has also been bundled with numerous other products from Symantec and other partners.
In addition, Symantec said, "A remote access component of pcAnywhere, called the pcAnywhere Thin Host, is also bundled with a number of Symantec backup and security products."
nCircle customers can easily identify every system running pcAnywhere or pcAnywhere Thin Host on their network with IP360 or our new, cloud-based network security scanner PureCloud.
Forewarned is forearmed. Scan now; make sure your network is protected.
