Heap-based Buffer Overflow in PGP Outlook Encryption Plug-In Allows Remote Privilege Escalation

Heap-based Buffer Overflow in PGP Outlook Encryption Plug-In Allows Remote Privilege Escalation

CVE-2002-0685 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

Heap-based buffer overflow in the message decoding functionality for PGP Outlook Encryption Plug-In, as used in NAI PGP Desktop Security 7.0.4, Personal Security 7.0.3, and Freeware 7.0.3, allows remote attackers to modify the heap and gain privileges via a large, malformed mail message.

Learn more about our Cis Benchmark Audit For Desktop Software.