Vulnerability Details CVE-2007-3201
Visual truncation vulnerability in Windows Privacy Tray (WinPT) 1.2.0 allows user-assisted remote attackers to install a key listed under the wrong user ID, and possibly cause the user to encrypt a victim's correspondence with this attacker-supplied key, via a key ID composed of the attacker's user ID, space characters, an invalid WinPT message, additional space characters, and the victim's user ID.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.055
EPSS Ranking 89.9%
CVSS Severity
CVSS v2 Score 7.1
References
- http://osvdb.org/41727
- http://securityreason.com/securityalert/2791
- http://wald.intevation.org/tracker/index.php?func=detail&aid=327&group_id=14&atid=138
- http://www.securityfocus.com/archive/1/471045/100/0/threaded
- http://www.securityfocus.com/bid/24412
- https://exchange.xforce.ibmcloud.com/vulnerabilities/34813
- http://osvdb.org/41727
- http://securityreason.com/securityalert/2791
- http://wald.intevation.org/tracker/index.php?func=detail&aid=327&group_id=14&atid=138
- http://www.securityfocus.com/archive/1/471045/100/0/threaded
- http://www.securityfocus.com/bid/24412
- https://exchange.xforce.ibmcloud.com/vulnerabilities/34813