Vulnerabilities > CVE-2005-4151 - Unspecified vulnerability in PGP Desktop 8.0/9.0

CVSS 2.1 - LOW

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

PARTIAL

Integrity impact

NONE

Availability impact

NONE

local

low complexity

pgp

NVD

Published: 2005-12-10

Updated: 2018-10-19

Summary

The Wipe Free Space utility in PGP Desktop Home 8.0 and Desktop Professional 9.0.3 Build 2932 and earlier does not clear file slack space in the last cluster for the file, which allows local users to access the previous contents of the disk.

Vulnerable Configurations

Part	Description	Count
Application	Pgp PGP Desktop 8.0 PGP Desktop 9.0 PGP Desktop *	3

References

http://archives.neohapsis.com/archives/fulldisclosure/2005-12/0349.html
http://metasploit.com/research/vulns/pgp_slackspace/
http://secunia.com/advisories/17827
http://www.osvdb.org/21569
http://www.securityfocus.com/archive/1/419077/100/0/threaded
http://www.securityfocus.com/archive/1/419282/100/0/threaded
http://www.securityfocus.com/archive/1/419654/100/0/threaded
http://www.securityfocus.com/bid/15784