PGP Desktop Denial Of Service Vulnerability Network Vulnerability

Summary

This host is running PGP Desktop and is prone to Denial of Service Vulnerability.

Impact

Successful exploitation will allow attacker to execute arbitrary codes in the context of an application via crafted program to cause denial of service.

Solution

Upgrade to PGP Desktop version 9.10 or later. For updates refer to http://www.pgp.com/products/desktop/index.html

Insight

This flaw is due to an error in the PGPwded.sys device driver when handling certain METHOD_BUFFERED IOCTL request that overwrites portions of memory.

Affected

PGP Corporation, PGP Desktop version 9.9.0.397 or prior on Windows.

References

http://secunia.com/advisories/33310

Updated on 2017-03-28

Severity

Classification

CVE CVE-2008-5731
CVSS Base Score: 4.9
AV:L/AC:L/Au:N/C:N/I:N/A:C

Related Vulnerabilities

Avahi Denial of Service Vulnerability
ClamAV 'parseicon()' Denial Of Service Vulnerability
ClamAV Hash Manager Off-By-One Denial of Service Vulnerability (Win)
Cogent DataHub Integer Overflow Vulnerability
chm2pdf Insecure Temporary File Creation or DoS Vulnerability

PGP Desktop Denial of Service Vulnerability

Take action and discover your vulnerabilities