CVE-2012-6533

Published Feb 18, 2013

Last updated 12 years ago

Overview

Description: Buffer overflow in pgpwded.sys in Symantec PGP Desktop 10.x and Encryption Desktop 10.3.0 before MP1 on Windows XP and Server 2003 allows local users to gain privileges via a crafted application.
Source: secure@symantec.com
NVD status: Analyzed

Risk scores

CVSS 2.0

Type: Primary
Base score: 4.4
Impact score: 6.4
Exploitability score: 3.4
Vector string: AV:L/AC:M/Au:N/C:P/I:P/A:P

Weaknesses

nvd@nist.gov: CWE-119

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:symantec:pgp_desktop:10.0.0:-:*:*:*:windows:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8ECF6686-DE99-4E36-8755-F9428167F709"
          },
          {
            "criteria": "cpe:2.3:a:symantec:pgp_desktop:10.0.1:-:*:*:*:windows:*:*",
            "vulnerable": true,
            "matchCriteriaId": "CCD53E72-7D94-437F-AE83-C077FAD671A9"
          },
          {
            "criteria": "cpe:2.3:a:symantec:pgp_desktop:10.0.2:-:*:*:*:windows:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A0604C91-EC64-490B-9C94-00C1757DADE6"
          },
          {
            "criteria": "cpe:2.3:a:symantec:pgp_desktop:10.0.3:-:*:*:*:windows:*:*",
            "vulnerable": true,
            "matchCriteriaId": "1D633009-6006-4C62-8E23-F1380C66FA17"
          },
          {
            "criteria": "cpe:2.3:a:symantec:pgp_desktop:10.1.0:-:*:*:*:windows:*:*",
            "vulnerable": true,
            "matchCriteriaId": "1F8F75CC-8725-44F1-9833-1279AE2FF49D"
          },
          {
            "criteria": "cpe:2.3:a:symantec:pgp_desktop:10.1.1:-:*:*:*:windows:*:*",
            "vulnerable": true,
            "matchCriteriaId": "6FA86438-9097-463D-8EA5-6E49A46215F7"
          },
          {
            "criteria": "cpe:2.3:a:symantec:pgp_desktop:10.1.2:-:*:*:*:windows:*:*",
            "vulnerable": true,
            "matchCriteriaId": "DBC102F4-B58F-43A7-BE48-849FA764ED32"
          },
          {
            "criteria": "cpe:2.3:a:symantec:pgp_desktop:10.2.0:-:*:*:*:windows:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C13CC0B6-F19B-4CBB-ACE8-4105D672C8AE"
          },
          {
            "criteria": "cpe:2.3:a:symantec:pgp_desktop:10.2.1:-:*:*:*:windows:*:*",
            "vulnerable": true,
            "matchCriteriaId": "AA77179C-D1D1-4FCF-B1BF-2EA481966972"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:microsoft:windows_2003_server:*:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "60EC86B8-5C8C-4873-B364-FB1F8EFE1CFF"
          },
          {
            "criteria": "cpe:2.3:o:microsoft:windows_xp:*:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "E61F1C9B-44AF-4B35-A7B2-948EEF7639BD"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:symantec:encryption_desktop:10.3.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "838DEBE6-2A04-4737-8282-5E7803B483A7"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

Overview

Risk scores

CVSS 2.0

Weaknesses

Social media

Configurations

References