CVE-2012-3582

Currently unrated

Key Information:

Vendor: Symantec
Status: Pgp Universal Server
Vendor: CVE Published:; 4 September 2012

Summary

Symantec PGP Universal Server 3.2.x before 3.2.1 MP2 does not properly manage sessions that include key search requests, which might allow remote attackers to read a private key in opportunistic circumstances by making a request near the end of a user's session.

References

http://www.symantec.com/security_response/securityupdates...

x_refsource_CONFIRM

http://www.securityfocus.com/bid/55246

vdb-entryx_refsource_BID

http://www.securitytracker.com/id?1027467

vdb-entryx_refsource_SECTRACK

Timeline

Vulnerability published
Sep 4, 2012
Vulnerability Reserved
Jun 19, 2012