Lucene search
HistoryOct 03, 2022 - 4:14 p.m.
CVE-2013-1610
cve-2013-1610
unquoted path vulnerability
windows
symantec
pgp desktop
encryption desktop
nvd
6.8 Medium
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:S/C:C/I:C/A:C
8.7 High
AI Score
Confidence
High
0.0004 Low
EPSS
Percentile
9.6%
Unquoted Windows search path vulnerability in RDDService in Symantec PGP Desktop 10.0.x through 10.2.x and Symantec Encryption Desktop 10.3.0 before MP3 allows local users to gain privileges via a Trojan horse application in the %SYSTEMDRIVE% top-level directory.
Affected configurations
Node
symantecencryption_desktopMatch10.3.0
ORsymantecpgp_desktopMatch10.0.0
ORsymantecpgp_desktopMatch10.0.1
ORsymantecpgp_desktopMatch10.0.2
ORsymantecpgp_desktopMatch10.0.3
ORsymantecpgp_desktopMatch10.1.0
ORsymantecpgp_desktopMatch10.1.1
ORsymantecpgp_desktopMatch10.1.2
ORsymantecpgp_desktopMatch10.2.0
ORsymantecpgp_desktopMatch10.2.1
ORsymantecpgp_desktopMatch10.2.2
Related
nessus
nessus
Symantec Encryption Desktop Unquoted Search Path
2013-08-12 00:00:00
openvas
openvas
Symantec PGP Desktop and Encryption Desktop Local Privilege Escalation Vulnerability
2013-09-03 00:00:00
Microsoft Windows Unquoted Path Vulnerability (SMB Login)
2018-03-23 00:00:00
prion
prion
Design/Logic Flaw
2013-08-05 13:22:00
symantec
symantec
Symantec Encryption Desktop Unquoted Search Path
2013-08-01 08:00:00
cvelist
cvelist
CVE-2013-1610
2022-10-03 16:14:48
nvd
nvd
CVE-2013-1610
2013-08-05 13:22:52
6.8 Medium
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:S/C:C/I:C/A:C
8.7 High
AI Score
Confidence
High
0.0004 Low
EPSS
Percentile
9.6%
Related for CVE-2013-1610