Vulnerability Database

289,697

Total vulnerabilities in the database

CVE-2009-0681

PGP Desktop before 9.10 allows local users to (1) cause a denial of service (crash) via a crafted IOCTL request to pgpdisk.sys, and (2) cause a denial of service (crash) and execute arbitrary code via a crafted IRP in an IOCTL request to pgpwded.sys.

  • Published: Apr 15, 2009
  • Updated: Apr 13, 2023
  • CVE: CVE-2009-0681
  • Severity: High
  • Exploit:

CVSS v2:

  • Severity: High
  • Score: 7.2
  • AV:L/AC:L/Au:N/C:C/I:C/A:C

CWEs:

Software From Fixed in
pgp / desktop 8.0 8.0.x
pgp / desktop 9.0 9.0.x
pgp / desktop 9.0.6 9.0.6.x
pgp / desktop - 9.9.0.x