CVE-2005-4151

Published: Dec 10, 2005Modified: Apr 16, 2026

2.1

Vector

AV:L/AC:L/Au:N/C:P/I:N/A:N

Exploitability: 3.9 / Impact: 2.9

Source: NVD

Description

The Wipe Free Space utility in PGP Desktop Home 8.0 and Desktop Professional 9.0.3 Build 2932 and earlier does not clear file slack space in the last cluster for the file, which allows local users to access the previous contents of the disk.

Affected (3)

Products: Pgp: Desktop

Pgp

1 product

Desktop

Configuration A

3 vulnerable

Vulnerable Software	Affected Versions
Pgp Desktop	Up to 9.0.3_build_2932
Pgp Desktop	Version 8.0
Pgp Desktop	Version 9.0

References (16)

http://archives.neohapsis.com/archives/fulldisclosure/2005-12/0349.html

Source: cve@mitre.org

http://metasploit.com/research/vulns/pgp_slackspace/

Source: cve@mitre.org

Exploit

http://secunia.com/advisories/17827

Source: cve@mitre.org

Vendor Advisory

http://www.osvdb.org/21569

Source: cve@mitre.org

http://www.securityfocus.com/archive/1/419077/100/0/threaded

Source: cve@mitre.org

http://www.securityfocus.com/archive/1/419282/100/0/threaded

Source: cve@mitre.org

http://www.securityfocus.com/archive/1/419654/100/0/threaded

Source: cve@mitre.org

http://www.securityfocus.com/bid/15784

Source: cve@mitre.org

Exploit

http://archives.neohapsis.com/archives/fulldisclosure/2005-12/0349.html