CVE-2013-1610

Published: Aug 5, 2013Modified: Apr 29, 2026

6.8

Vector

AV:L/AC:L/Au:S/C:C/I:C/A:C

Exploitability: 3.1 / Impact: 10.0

Source: NVD

Description

Unquoted Windows search path vulnerability in RDDService in Symantec PGP Desktop 10.0.x through 10.2.x and Symantec Encryption Desktop 10.3.0 before MP3 allows local users to gain privileges via a Trojan horse application in the %SYSTEMDRIVE% top-level directory.

Affected (11)

Products: Symantec: Encryption Desktop, Pgp Desktop

Symantec

2 products

Encryption Desktop

Pgp Desktop

Configuration A

11 vulnerable

Vulnerable Software	Affected Versions
Symantec Encryption Desktop	Version 10.3.0
Symantec Pgp Desktop	Version 10.0.0
Symantec Pgp Desktop	Version 10.0.1
Symantec Pgp Desktop	Version 10.0.2
Symantec Pgp Desktop	Version 10.0.3
Symantec Pgp Desktop	Version 10.1.0
Symantec Pgp Desktop	Version 10.1.1
Symantec Pgp Desktop	Version 10.1.2
Symantec Pgp Desktop	Version 10.2.0
Symantec Pgp Desktop	Version 10.2.1
Symantec Pgp Desktop	Version 10.2.2

References (4)

http://www.securityfocus.com/bid/61489

Source: secure@symantec.com

http://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&year=&suid=20130801_01

Source: secure@symantec.com

http://www.securityfocus.com/bid/61489

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&year=&suid=20130801_01

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.