Buffer Overflow Vulnerability in Symantec PGP Desktop and Encryption Desktop for Windows
CVE-2012-6533

Currently unrated

Key Information:

Vendor: Symantec
Status: Pgp Desktop
Vendor: CVE Published:; 18 February 2013

What is CVE-2012-6533?

A buffer overflow exists in the pgpwded.sys component of Symantec PGP Desktop version 10.x and Encryption Desktop version 10.3.0 before MP1. This vulnerability allows local users on affected systems, specifically Windows XP and Windows Server 2003, to execute arbitrary code, potentially leading to privilege escalation. Attackers can exploit this flaw through a specially crafted application, gaining elevated access to the system.

References

http://www.securityfocus.com/bid/57835

vdb-entryx_refsource_BID

http://www.symantec.com/security_response/securityupdates...

x_refsource_CONFIRM

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability Reserved
Oct 3, 2022
Vulnerability published
Feb 18, 2013