CVE-2009-0681
published 2009-04-15CVE-2009-0681: PGP Desktop before 9.10 allows local users to (1) cause a denial of service (crash) via a crafted IOCTL request to pgpdisk.sys, and (2) cause a denial of…
PriorityP425high7.2CVSS 2.0
AVLACLAuNCCICAC
EPSS
0.42%
33.8th percentile
PGP Desktop before 9.10 allows local users to (1) cause a denial of service (crash) via a crafted IOCTL request to pgpdisk.sys, and (2) cause a denial of service (crash) and execute arbitrary code via a crafted IRP in an IOCTL request to pgpwded.sys.
Affected
4 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| pgp | desktop | <= 9.9.0 | — |
| pgp | desktop | — | — |
| pgp | desktop | — | — |
| pgp | desktop | — | — |
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
http://en.securitylab.ru/lab/PT-2009-01http://www.securityfocus.com/archive/1/502633/100/0/threadedhttp://www.securitytracker.com/id?1022034https://pgp.custhelp.com/cgi-bin/pgp.cfg/php/enduser/std_adp.php?p_faqid=1014&p_topview=1http://en.securitylab.ru/lab/PT-2009-01http://www.securityfocus.com/archive/1/502633/100/0/threadedhttp://www.securitytracker.com/id?1022034https://pgp.custhelp.com/cgi-bin/pgp.cfg/php/enduser/std_adp.php?p_faqid=1014&p_topview=1
2009-04-15
Published