cbcvebase.
CVE-2009-0681
published 2009-04-15

CVE-2009-0681: PGP Desktop before 9.10 allows local users to (1) cause a denial of service (crash) via a crafted IOCTL request to pgpdisk.sys, and (2) cause a denial of…

PriorityP425high7.2CVSS 2.0
AVLACLAuNCCICAC
EPSS
0.42%
33.8th percentile
PGP Desktop before 9.10 allows local users to (1) cause a denial of service (crash) via a crafted IOCTL request to pgpdisk.sys, and (2) cause a denial of service (crash) and execute arbitrary code via a crafted IRP in an IOCTL request to pgpwded.sys.

Affected

4 ranges
VendorProductVersion rangeFixed in
pgpdesktop<= 9.9.0
pgpdesktop
pgpdesktop
pgpdesktop
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.