Memory Copy Vulnerability in Symantec PGP Desktop and Encryption Desktop Professional
CVE-2014-1646

Currently unrated

Key Information:

Vendor: Symantec
Status: Encryption Desktop
Vendor: CVE Published:; 23 April 2014

Summary

A vulnerability in Symantec's PGP Desktop and Encryption Desktop Professional can lead to severe disruptions, allowing remote attackers to exploit improper memory copy operations. This defect may result in denial of service, characterized by read access violations and application crashes when processed with malformed certificates. It is critical for users of these products to apply security updates promptly.

References

http://www.symantec.com/security_response/securityupdates...

x_refsource_CONFIRM

http://www.securityfocus.com/bid/67016

vdb-entryx_refsource_BID

Timeline

Vulnerability published
Apr 23, 2014
Vulnerability Reserved
Jan 23, 2014