Vulnerabilities > PGP > Personal Privacy

DATE CVE VULNERABILITY TITLE RISK
2002-12-31 CVE-2002-2069 Incomplete Cleanup vulnerability in PGP Personal Privacy
PGP 6.x and 7.x does not clear Windows alternate data streams that are attached to files on NTFS file systems, which allows attackers to recover sensitive information that was supposed to be deleted.
network
low complexity
pgp CWE-459
7.5
7.5
2002-12-31 CVE-2002-1696 Cleartext Storage of Sensitive Information vulnerability in PGP Personal Privacy 7.0/7.0.3/7.0.4
Microsoft Outlook plug-in PGP version 7.0, 7.0.3, and 7.0.4 silently saves a decrypted copy of a message to hard disk when "Automatically decrypt/verify when opening messages" option is checked, "Always use Secure Viewer when decrypting" option is not checked, and the user replies to an encrypted message.
local
low complexity
pgp CWE-312
5.5
5.5
2000-10-20 CVE-2000-0802 Unspecified vulnerability in PGP Personal Privacy 6.5.3
The BAIR program does not properly restrict access to the Internet Explorer Internet options menu, which allows local users to obtain access to the menu by modifying the registry key that starts BAIR.
local
low complexity
pgp
3.6
3.6