CVE-2009-0681

PGP Desktop before 9.10 allows local users to 1 cause a denial of service crash via a crafted IOCTL request to pgpdisk.sys, and 2 cause a denial of service crash and execute arbitrary code via a crafted IRP in an IOCTL request to pgpwded.sys...