Pgp: >> Desktop >> 8.0 Security Vulnerabilities
PGP Desktop before 9.10 allows local users to (1) cause a denial of service (crash) via a crafted IOCTL request to pgpdisk.sys, and (2) cause a denial of service (crash) and execute arbitrary code via a crafted IRP in an IOCTL request to pgpwded.sys.
CVSS Score
7.2
EPSS Score
0.0
Published
2009-04-15
The Wipe Free Space utility in PGP Desktop Home 8.0 and Desktop Professional 9.0.3 Build 2932 and earlier does not clear file slack space in the last cluster for the file, which allows local users to access the previous contents of the disk.
CVSS Score
2.1
EPSS Score
0.001
Published
2005-12-10