CVSS: 7.8EPSS: 0%CPEs: 9EXPL: 0CVE-2016-6590
https://notcve.org/view.php?id=CVE-2016-6590
08 Jan 2020 — A privilege escalation vulnerability exists when loading DLLs during boot up and reboot in Symantec IT Management Suite 8.0 prior to 8.0 HF4 and Suite 7.6 prior to 7.6 HF7, Symantec Ghost Solution Suite 3.1 prior to 3.1 MP4, Symantec Endpoint Virtualization 7.x prior to 7.6 HF7, and Symantec Encryption Desktop 10.x prior to 10.4.1, which could let a local malicious user execute arbitrary code. Existe una vulnerabilidad de escalada de privilegios cuando se cargan bibliotecas DLL durante el arranque y el rein... • http://www.securityfocus.com/bid/94279 • CWE-269: Improper Privilege Management •
CVSS: 5.7EPSS: 0%CPEs: 1EXPL: 0CVE-2017-13682
https://notcve.org/view.php?id=CVE-2017-13682
23 Oct 2017 — In Symantec Encryption Desktop before SED 10.4.1 MP2HF1, a kernel memory leak is a type of resource leak that can occur when a computer program incorrectly manages memory allocations in such a way that memory which is no longer needed is not released. In object-oriented programming, a memory leak may happen when an object is stored in memory but cannot be accessed by the running code. En Symantec Encryption Desktop en versiones anteriores a SED 10.4.1 MP2HF1, una fuga de memoria de kernel es un tipo de fuga... • http://www.securityfocus.com/bid/101497 • CWE-772: Missing Release of Resource after Effective Lifetime •
CVSS: 4.2EPSS: 0%CPEs: 1EXPL: 0CVE-2017-13679
https://notcve.org/view.php?id=CVE-2017-13679
10 Oct 2017 — A denial of service (DoS) attack in Symantec Encryption Desktop before SED 10.4.1 MP2HF1 allows remote attackers to make a particular machine or network resource unavailable to its intended users by temporarily or indefinitely disrupting services of a specific host within a network. Un ataque de denegación de servicio (DoS) en Symantec Encryption Desktop en versiones anteriores a SED 10.4.1 MP2HF1 permite a atacantes remotos que hagan que una máquina o un recurso de red en particular deje de estar disponibl... • http://www.securityfocus.com/bid/101090 •
CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 0CVE-2017-6330
https://notcve.org/view.php?id=CVE-2017-6330
13 Sep 2017 — Symantec Encryption Desktop before SED 10.4.1MP2 can allow remote attackers to cause a denial of service (resource consumption) via crafted web requests." Symantec Encryption Desktop en versiones anteriores a SED 10.4.1MP2 puede permitir que atacantes remotos provoquen una denegación de servicio (consumo de recursos) mediante peticiones web manipuladas. • http://www.securityfocus.com/bid/100552 •
CVSS: 7.5EPSS: 0%CPEs: 13EXPL: 0CVE-2014-3436
https://notcve.org/view.php?id=CVE-2014-3436
22 Aug 2014 — Symantec Encryption Desktop 10.3.x before 10.3.2 MP3, and Symantec PGP Desktop 10.0.x through 10.2.x, allows remote attackers to cause a denial of service (CPU and memory consumption) via a crafted encrypted e-mail message that decompresses to a larger size. Symantec Encryption Desktop 10.3.x anterior a 10.3.2 MP3, y Symantec PGP Desktop 10.0.x hasta 10.2.x, permite a atacantes remotos causar una denegación de servicio (consumo CPU y memoria) a través de un mensaje de e-mail cifrado manipulado que se descom... • http://www.securityfocus.com/bid/69259 • CWE-310: Cryptographic Issues •
CVSS: 7.1EPSS: 0%CPEs: 15EXPL: 0CVE-2014-3431
https://notcve.org/view.php?id=CVE-2014-3431
21 Jun 2014 — Symantec PGP Desktop 10.x, and Encryption Desktop Professional 10.3.x before 10.3.2 MP2, on OS X uses world-writable permissions for temporary files, which allows local users to bypass intended restrictions on file reading, modification, creation, and permission changes via unspecified vectors. Symantec PGP Desktop 10.x, y Encryption Desktop Professional 10.3.x anterior a 10.3.2 MP2, en OS X utiliza permisos de lectura universal para ficheros temporales, lo que permite a usuarios locales evadir restriccione... • http://secunia.com/advisories/59421 • CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 7.5EPSS: 0%CPEs: 13EXPL: 0CVE-2014-1647
https://notcve.org/view.php?id=CVE-2014-1647
23 Apr 2014 — Symantec PGP Desktop 10.0.x through 10.2.x and Encryption Desktop Professional 10.3.x before 10.3.2 MP1 do not properly perform block-data moves, which allows remote attackers to cause a denial of service (read access violation and application crash) via a malformed certificate. Symantec PGP Desktop 10.0.x hasta 10.2.x y Encryption Desktop Professional 10.3.x anterior a 10.3.2 MP1 no realizan debidamente movimientos de bloques de datos, lo que permite a atacantes remotos causar una denegación de servicio (v... • http://www.securityfocus.com/bid/67020 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 7.5EPSS: 0%CPEs: 13EXPL: 0CVE-2014-1646
https://notcve.org/view.php?id=CVE-2014-1646
23 Apr 2014 — Symantec PGP Desktop 10.0.x through 10.2.x and Encryption Desktop Professional 10.3.x before 10.3.2 MP1 do not properly perform memory copies, which allows remote attackers to cause a denial of service (read access violation and application crash) via a malformed certificate. Symantec PGP Desktop 10.0.x hasta 10.2.x y Encryption Desktop Professional 10.3.x anterior a 10.3.2 MP1 no realiza debidamente copias de memoria, lo que permite a atacantes remotos causar una denegación de servicio (violación de lectur... • http://www.securityfocus.com/bid/67016 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 7.8EPSS: 0%CPEs: 11EXPL: 0CVE-2013-1610
https://notcve.org/view.php?id=CVE-2013-1610
04 Aug 2013 — Unquoted Windows search path vulnerability in RDDService in Symantec PGP Desktop 10.0.x through 10.2.x and Symantec Encryption Desktop 10.3.0 before MP3 allows local users to gain privileges via a Trojan horse application in the %SYSTEMDRIVE% top-level directory. Vulnerabilidad de búsqueda de ruta no entrecomillada en Windows en RDDService en Symantec PGP Desktop v10.0.x hasta v10.2.x y Symantec Encryption Desktop v10.3.0 antes de MP3, permite a usuarios locales conseguir privilegios a través de una aplicac... • http://www.securityfocus.com/bid/61489 •
CVSS: 7.8EPSS: 0%CPEs: 12EXPL: 1CVE-2012-6533 – Symantec Encryption Desktop 10 - Local Buffer Overflow / Local Privilege Escalation
https://notcve.org/view.php?id=CVE-2012-6533
18 Feb 2013 — Buffer overflow in pgpwded.sys in Symantec PGP Desktop 10.x and Encryption Desktop 10.3.0 before MP1 on Windows XP and Server 2003 allows local users to gain privileges via a crafted application. Desbordamiento de buffer en pgpwded.sys del Symantec PGP Desktop v10.x and Encryption Desktop v10.3.0 antes de MP1 en Windows XP y Server 2003 que permite a usuarios locales escalar privilegios por medio de aplicaciones creadas para este propósito. • https://www.exploit-db.com/exploits/38299 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •