Lucene search
K
PgpDesktop

4 matches found

CVE
CVE
added 2009/04/15 10:0 a.m.69 views

CVE-2009-0681

PGP Desktop before 9.10 is affected by local DoS and code execution vulnerabilities in two IOCTL handlers. Specifically, pgpdisk.sys and pgpwded.sys fail to properly validate Irp/buffer data, allowing local attackers to crash the system or, for pgpwded.sys, crash or execute arbitrary code with SY...

7.2CVSS7.2AI score0.00422EPSS
CVE
CVE
added 2010/09/15 5:26 p.m.65 views

CVE-2010-3397

CVE-2010-3397 affects Symantec PGP Desktop (versions including 9.9.0 build 397, 9.10.x, 10.0.0 build 2732 and likely others). Root cause is an untrusted search path vulnerability allowing DLL hijacking via tsp.dll or tvttsp.dll located in the same folder as credential/key files (.p12, .pem, .pgp,...

9.3CVSS7.7AI score0.04237EPSS
CVE
CVE
added 2008/12/26 5:8 p.m.64 views

CVE-2008-5731

Summary of CVE-2008-5731 : The PGP Desktop product (PGPwded.sys and related IOCTL handling in pgpdisk.sys) is vulnerable to local DoS and potential privilege escalation. The issue arises from insufficient boundary checks on IRP data in certain METHOD_BUFFERED IOCTL requests, enabling memory overw...

4.9CVSS6.5AI score0.00896EPSS
CVE
CVE
added 2005/12/10 11:0 a.m.42 views

CVE-2005-4151

The CVE-2005-4151 entry concerns the Wipe Free Space utility in PGP Desktop Home 8.0 and Desktop Professional 9.0.3 Build 2932 and earlier. The issue is that the utility does not clear file slack space in the last cluster for a file, enabling local users to access previous contents of the disk. A...

2.1CVSS6.7AI score0.00452EPSS