PGP Desktop prior to 9.10 allows local users to (1) cause a denial of service (crash) via a crafted IOCTL request to pgpdisk.sys, and (2) cause a denial of service (crash) and execute arbitrary code via a crafted IRP in an IOCTL request to pgpwded.sys.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
pgp desktop 9.0.6 |
||
pgp desktop 8.0 |
||
pgp desktop 9.0 |
||
pgp desktop |