RSS   Vulnerabilities for 'Freeware'   RSS

2002-08-12
 
CVE-2002-0788

 

 
An interaction between PGP 7.0.3 with the "wipe deleted files" option, when used on Windows Encrypted File System (EFS), creates a cleartext temporary files that cannot be wiped or deleted due to strong permissions, which could allow certain local users or attackers with physical access to obtain cleartext information.

 
2002-07-23
 
CVE-2002-0685

 

 
Heap-based buffer overflow in the message decoding functionality for PGP Outlook Encryption Plug-In, as used in NAI PGP Desktop Security 7.0.4, Personal Security 7.0.3, and Freeware 7.0.3, allows remote attackers to modify the heap and gain privileges via a large, malformed mail message.

 
2001-09-04
 
CVE-2001-1016

 

 
PGP Corporate Desktop before 7.1, Personal Security before 7.0.3, Freeware before 7.0.3, and E-Business Server before 7.1 does not properly display when invalid userID's are used to sign a message, which could allow an attacker to make the user believe that the document has been signed by a trusted third party by adding a second, invalid user ID to a key which has already been signed by the third party, aka the "PGPsdk Key Validity Vulnerability."

 

 >>> Vendor: PGP 14 Products
Certificate server
Freeware
PGP
Personal privacy
Openpgp
Corporate desktop
E-business server
Personal security
Keyserver
E-ppliance 300
Desktop security
Desktop
Desktop for mac
Desktop for windows


Copyright 2024, cxsecurity.com

 

Back to Top