60 matches found
EUVD-2005-4146
Malware in sbrugna...
EUVD-2009-0681
Malware in sbrugna...
EUVD-2010-3395
Malware in sbrugna...
Code injection
Symantec Encryption Desktop 10.3.x before 10.3.2 MP3, and Symantec PGP Desktop 10.0.x through 10.2.x, allows remote attackers to cause a denial of service CPU and memory consumption via a crafted encrypted e-mail message that decompresses to a larger size...
CVE-2014-3431
Symantec PGP Desktop 10.x, and Encryption Desktop Professional 10.3.x before 10.3.2 MP2, on OS X uses world-writable permissions for temporary files, which allows local users to bypass intended restrictions on file reading, modification, creation, and permission changes via unspecified vectors...
Design/Logic Flaw
Symantec PGP Desktop 10.x, and Encryption Desktop Professional 10.3.x before 10.3.2 MP2, on OS X uses world-writable permissions for temporary files, which allows local users to bypass intended restrictions on file reading, modification, creation, and permission changes via unspecified vectors...
CVE-2014-3431
CVE-2014-3431 affects Symantec PGP Desktop for OS X and Symantec Encryption Desktop/Professional (OS X). The issue arises from world-writable temporary files created during installation, enabling a multi-user attacker to read, modify, or create files with another user’s permissions when the affec...
Code injection
Symantec PGP Desktop 10.0.x through 10.2.x and Encryption Desktop Professional 10.3.x before 10.3.2 MP1 do not properly perform memory copies, which allows remote attackers to cause a denial of service read access violation and application crash via a malformed certificate...
Code injection
Symantec PGP Desktop 10.0.x through 10.2.x and Encryption Desktop Professional 10.3.x before 10.3.2 MP1 do not properly perform block-data moves, which allows remote attackers to cause a denial of service read access violation and application crash via a malformed certificate...
CVE-2014-1646
Symantec PGP Desktop 10.0.x through 10.2.x and Encryption Desktop Professional 10.3.x before 10.3.2 MP1 do not properly perform memory copies, which allows remote attackers to cause a denial of service read access violation and application crash via a malformed certificate...
CVE-2014-1646
CVE-2014-1646 affects Symantec PGP Desktop 10.0.x–10.2.x and Encryption Desktop Professional 10.3.x; an improper memory copy when parsing malformed certificates can cause a read- access violation and application crash (DoS). The issue impacts remote-exploitation scenarios via crafted certificates...
CVE-2014-1647
Symantec PGP Desktop 10.0.x–10.2.x and Encryption Desktop Professional/10.3.x before 10.3.2 MP1 are affected by a vulnerability in block-data move handling when parsing specially crafted certificates, which can trigger a read-access violation and cause an application crash (DoS) remotely. The und...
Symantec PGP Desktop and Encryption Desktop Integer Overflow Vulnerability
Symantec PGP/Encryption Desktop is prone to an integer overflow vulnerability. SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only if description...
Symantec PGP Desktop and Encryption Desktop Local Privilege Escalation Vulnerability
Symantec PGP/Encryption Desktop is prone to a local privilege escalation vulnerability. SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only if...
CVE-2013-1610
CVE-2013-1610 : Unquoted Windows search path in Symantec PGP Desktop/RDDService and Symantec Encryption Desktop 10.x could allow local privilege escalation via a Trojan placed in the SYSTEMDRIVE root. Affected: PGP Desktop 10.0.x–10.2.x and Encryption Desktop 10.3.0 before MP3. Root cause: unquot...
Symantec Encryption Desktop Detection
The remote host has Symantec Encryption Desktop installed formerly PGP Desktop, a desktop encryption application. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid64852; scriptversion"1.8"; scriptsetattributeattribute:"pluginmodificationdate", value:"2022/10/10";...
CVE-2012-6533
Buffer overflow in pgpwded.sys in Symantec PGP Desktop 10.x and Encryption Desktop 10.3.0 before MP1 on Windows XP and Server 2003 allows local users to gain privileges via a crafted application...
CVE-2012-4351
Integer overflow in pgpwded.sys in Symantec PGP Desktop 10.x and Encryption Desktop 10.3.0 before MP1 allows local users to gain privileges via a crafted application...
CVE-2012-6533
Buffer overflow in pgpwded.sys in Symantec PGP Desktop 10.x and Encryption Desktop 10.3.0 before MP1 on Windows XP and Server 2003 allows local users to gain privileges via a crafted application...
CVE-2012-4351
CVE-2012-4351 refers to an integer overflow in the kernel driver pgpwded.sys used by Symantec PGP Desktop and Symantec Encryption Desktop (10.x) prior to the 10.3.0 MP1 maintenance pack. A crafted input could allow local users to gain privileges via this vulnerability. A related entry (CVE-2012-6...