CVE-2012-4351

EUVD-2012-4294
Integer overflow in pgpwded.sys in Symantec PGP Desktop 10.x and Encryption Desktop 10.3.0 before MP1 allows local users to gain privileges via a crafted application.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
6.9 UNKNOWN
LOCAL
MEDIUM
AV:L/AC:M/Au:N/C:C/I:C/A:C
Base Score
CVSS 3.x
EPSS Score
Percentile: 30%
Affected Products (NVD)
VendorProductVersion
symantecencryption_desktop
10.3.0
symantecpgp_desktop
10.0.0
symantecpgp_desktop
10.0.1
symantecpgp_desktop
10.0.2
symantecpgp_desktop
10.0.3
symantecpgp_desktop
10.1.0
symantecpgp_desktop
10.1.1
symantecpgp_desktop
10.1.2
symantecpgp_desktop
10.2.0
symantecpgp_desktop
10.2.1
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://www.securityfocus.com/bid/57170
http://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&year=2013&suid=20130213_00
http://www.securityfocus.com/bid/57170
http://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&year=2013&suid=20130213_00