CVE-2012-4351

Published Feb 18, 2013

Last updated 12 years ago

Overview

Description: Integer overflow in pgpwded.sys in Symantec PGP Desktop 10.x and Encryption Desktop 10.3.0 before MP1 allows local users to gain privileges via a crafted application.
Source: cve@mitre.org
NVD status: Analyzed

Risk scores

CVSS 2.0

Type: Primary
Base score: 6.9
Impact score: 10
Exploitability score: 3.4
Vector string: AV:L/AC:M/Au:N/C:C/I:C/A:C

Weaknesses

nvd@nist.gov: CWE-189

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:symantec:encryption_desktop:10.3.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "838DEBE6-2A04-4737-8282-5E7803B483A7"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:symantec:pgp_desktop:10.0.0:-:*:*:*:windows:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8ECF6686-DE99-4E36-8755-F9428167F709"
          },
          {
            "criteria": "cpe:2.3:a:symantec:pgp_desktop:10.0.1:-:*:*:*:windows:*:*",
            "vulnerable": true,
            "matchCriteriaId": "CCD53E72-7D94-437F-AE83-C077FAD671A9"
          },
          {
            "criteria": "cpe:2.3:a:symantec:pgp_desktop:10.0.2:-:*:*:*:windows:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A0604C91-EC64-490B-9C94-00C1757DADE6"
          },
          {
            "criteria": "cpe:2.3:a:symantec:pgp_desktop:10.0.3:-:*:*:*:windows:*:*",
            "vulnerable": true,
            "matchCriteriaId": "1D633009-6006-4C62-8E23-F1380C66FA17"
          },
          {
            "criteria": "cpe:2.3:a:symantec:pgp_desktop:10.1.0:-:*:*:*:windows:*:*",
            "vulnerable": true,
            "matchCriteriaId": "1F8F75CC-8725-44F1-9833-1279AE2FF49D"
          },
          {
            "criteria": "cpe:2.3:a:symantec:pgp_desktop:10.1.1:-:*:*:*:windows:*:*",
            "vulnerable": true,
            "matchCriteriaId": "6FA86438-9097-463D-8EA5-6E49A46215F7"
          },
          {
            "criteria": "cpe:2.3:a:symantec:pgp_desktop:10.1.2:-:*:*:*:windows:*:*",
            "vulnerable": true,
            "matchCriteriaId": "DBC102F4-B58F-43A7-BE48-849FA764ED32"
          },
          {
            "criteria": "cpe:2.3:a:symantec:pgp_desktop:10.2.0:-:*:*:*:windows:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C13CC0B6-F19B-4CBB-ACE8-4105D672C8AE"
          },
          {
            "criteria": "cpe:2.3:a:symantec:pgp_desktop:10.2.1:-:*:*:*:windows:*:*",
            "vulnerable": true,
            "matchCriteriaId": "AA77179C-D1D1-4FCF-B1BF-2EA481966972"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

Overview

Risk scores

CVSS 2.0

Weaknesses

Social media

Configurations

References