2 matches found
CVE-2014-3431
CVE-2014-3431 affects Symantec PGP Desktop for OS X and Symantec Encryption Desktop/Professional (OS X). The issue arises from world-writable temporary files created during installation, enabling a multi-user attacker to read, modify, or create files with another user’s permissions when the affec...
Symantec Encryption Desktop for OS X World-Writable Files Insecure File Handling
SUMMARY Symantecs Encryption Desktop for OS X installs some temporary files with world-writable attributes during installation. In a multi-user environment, a malicious user could manipulate these world-writable files to read and write files or create files with another users permissions. AFFECTE...