CVE-2005-4151

Sažetak

The Wipe Free Space utility in PGP Desktop Home 8.0 and Desktop Professional 9.0.3 Build 2932 and earlier does not clear file slack space in the last cluster for the file, which allows local users to access the previous contents of the disk.

Reference

http://archives.neohapsis.com/archives/fulldisclosure/2005-12/0349.html
http://metasploit.com/research/vulns/pgp_slackspace/
http://secunia.com/advisories/17827
http://www.osvdb.org/21569
http://www.securityfocus.com/archive/1/419077/100/0/threaded
http://www.securityfocus.com/archive/1/419282/100/0/threaded
http://www.securityfocus.com/archive/1/419654/100/0/threaded
http://www.securityfocus.com/bid/15784

CVSS

Base:	2.1
Impact:	2.9
Exploitability:	3.9

Pristup

Vektor	Složenost	Autentikacija
LOCAL	LOW	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
PARTIAL	NONE	NONE

CVSS vektor

AV:L/AC:L/Au:N/C:P/I:N/A:N

Zadnje važnije ažuriranje

19-10-2018 - 15:40

Objavljeno

10-12-2005 - 11:03