Lucene search
HistoryAug 05, 2013 - 1:22 p.m.
CVE-2013-1610
CVSS2
6.8
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:S/C:C/I:C/A:C
AI Score
6.4
Confidence
High
EPSS
0
Percentile
9.5%
Unquoted Windows search path vulnerability in RDDService in Symantec PGP Desktop 10.0.x through 10.2.x and Symantec Encryption Desktop 10.3.0 before MP3 allows local users to gain privileges via a Trojan horse application in the %SYSTEMDRIVE% top-level directory.
Affected configurations
Node
symantecencryption_desktopMatch10.3.0
ORsymantecpgp_desktopMatch10.0.0
ORsymantecpgp_desktopMatch10.0.1
ORsymantecpgp_desktopMatch10.0.2
ORsymantecpgp_desktopMatch10.0.3
ORsymantecpgp_desktopMatch10.1.0
ORsymantecpgp_desktopMatch10.1.1
ORsymantecpgp_desktopMatch10.1.2
ORsymantecpgp_desktopMatch10.2.0
ORsymantecpgp_desktopMatch10.2.1
ORsymantecpgp_desktopMatch10.2.2
| Vendor | Product | Version | CPE |
|---|---|---|---|
| symantec | encryption_desktop | 10.3.0 | cpe:2.3:a:symantec:encryption_desktop:10.3.0:*:*:*:*:*:*:* |
| symantec | pgp_desktop | 10.0.0 | cpe:2.3:a:symantec:pgp_desktop:10.0.0:*:*:*:*:*:*:* |
| symantec | pgp_desktop | 10.0.1 | cpe:2.3:a:symantec:pgp_desktop:10.0.1:*:*:*:*:*:*:* |
| symantec | pgp_desktop | 10.0.2 | cpe:2.3:a:symantec:pgp_desktop:10.0.2:*:*:*:*:*:*:* |
| symantec | pgp_desktop | 10.0.3 | cpe:2.3:a:symantec:pgp_desktop:10.0.3:*:*:*:*:*:*:* |
| symantec | pgp_desktop | 10.1.0 | cpe:2.3:a:symantec:pgp_desktop:10.1.0:*:*:*:*:*:*:* |
| symantec | pgp_desktop | 10.1.1 | cpe:2.3:a:symantec:pgp_desktop:10.1.1:*:*:*:*:*:*:* |
| symantec | pgp_desktop | 10.1.2 | cpe:2.3:a:symantec:pgp_desktop:10.1.2:*:*:*:*:*:*:* |
| symantec | pgp_desktop | 10.2.0 | cpe:2.3:a:symantec:pgp_desktop:10.2.0:*:*:*:*:*:*:* |
| symantec | pgp_desktop | 10.2.1 | cpe:2.3:a:symantec:pgp_desktop:10.2.1:*:*:*:*:*:*:* |
Related
nessus
nessus
Symantec Encryption Desktop Unquoted Search Path
2013-08-12 00:00:00
cve
cve
CVE-2013-1610
2013-08-05 13:22:52
symantec
symantec
Symantec Encryption Desktop Unquoted Search Path
2013-08-01 08:00:00
cvelist
cvelist
CVE-2013-1610
2013-08-04 20:00:00
openvas
openvas
Symantec PGP Desktop and Encryption Desktop Local Privilege Escalation Vulnerability
2013-09-03 00:00:00
Microsoft Windows Unquoted Path Vulnerability (SMB Login)
2018-03-23 00:00:00
prion
prion
Design/Logic Flaw
2013-08-05 13:22:00
CVSS2
6.8
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:S/C:C/I:C/A:C
AI Score
6.4
Confidence
High
EPSS
0
Percentile
9.5%
Related for NVD:CVE-2013-1610