Symantec’s pcAnywhere Security Hotfix
OVERVIEW: In response to Symantec’s announcement regarding the theft of source code in 2006 that could create multiple vulnerabilities for pcAnywhere users, we have assembled a few common questions and answers.
Q. Does my network contain vulnerable hosts?
A. If your network contains pcAnywhere, you are at risk for this exploit. Symantec has released patches for version 12 and above. Versions prior to 12.0 must be upgraded to version 12.5 before applying security patches.
Q. What machines have been patched or need patches, etc?
A. Symantec replaced 3 files; however they did not change the full product version. This can make it difficult to validate that the endpoint is patched without specifically looking for those 3 files. It may be hard to determine which machines have been patched, even manually at the endpoint. This patch release is non-standard and may require local users to perform several technical steps to verify the patch.
A side note – under Add/Remove programs or even under the product’s help about window, it will show the old version number.
Q. How can Promisec help manage the crisis?
A. Promisec’s agentless inspections provide unprecedented visibility into your endpoint landscape. We can help you quickly, easily and accurately identify all versions of pcAnywhere on your network. Upon identification, we can provide you the tools to neutralize the threat by disabling it until it can be patched by the organization, removing it, monitoring the patch deployment or enabling Promisec to deploy the patch to the necessary endpoints.
If you would like to learn more about Promisec’s INNERspace, please call us toll free at 1-800-730-3311 or email us at pcanywhere@promisec.com
To schedule a no cost and no risk demo of our robust platform with an engineer, please fill out the form below and we will respond via a phone call or an email.