Session Management Vulnerability in Symantec PGP Universal Server 3.2.x

Session Management Vulnerability in Symantec PGP Universal Server 3.2.x

CVE-2012-3582 · LOW Severity

AV:A/AC:M/AU:N/C:P/I:N/A:N

Symantec PGP Universal Server 3.2.x before 3.2.1 MP2 does not properly manage sessions that include key search requests, which might allow remote attackers to read a private key in opportunistic circumstances by making a request near the end of a user's session.

Learn more about our Cis Benchmark Audit For Server Software.