← Back

CVE-2002-0788

nvd nist
Published: Aug 12, 2002Modified: Apr 16, 2026

JSON object

Loading...
5.5
Vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
Exploitability: 1.8 / Impact: 3.6
Source: NVD

Description

An interaction between PGP 7.0.3 with the "wipe deleted files" option, when used on Windows Encrypted File System (EFS), creates a cleartext temporary files that cannot be wiped or deleted due to strong permissions, which could allow certain local users or attackers with physical access to obtain cleartext information.

Affected (3)

Pgp
3 products
Corporate Desktop
Freeware
Personal Security
Configuration A
3 vulnerable
Vulnerable SoftwareAffected Versions
Corporate Desktop
Version 7.1
Freeware
Version 7.0.3
Personal Security
Version 7.0.3

Related CWEs

CWE-459
Incomplete Cleanup
The product does not properly "clean up" and remove temporary or supporting resources after they have been used.

References (10)

Source: cve@mitre.org
Broken LinkPatchVendor Advisory
Source: cve@mitre.org
Third Party Advisory
Source: cve@mitre.org
Broken LinkPatchVendor Advisory
Source: cve@mitre.org
Broken Link
Source: cve@mitre.org
Broken LinkPatchThird Party AdvisoryVDB EntryVendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Broken LinkPatchVendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Broken LinkPatchVendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Broken Link
Source: af854a3a-2127-422b-91ae-364da2661108
Broken LinkPatchThird Party AdvisoryVDB EntryVendor Advisory

Timeline

No history available yet.