← Retour aux CVEs

CVE-2002-1696

MEDIUM

5.5

Description

Microsoft Outlook plug-in PGP version 7.0, 7.0.3, and 7.0.4 silently saves a decrypted copy of a message to hard disk when "Automatically decrypt/verify when opening messages" option is checked, "Always use Secure Viewer when decrypting" option is not checked, and the user replies to an encrypted message.

Details CVE

Score CVSS v3.15.5

SeveriteMEDIUM

Vecteur CVSSCVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

Vecteur d'attaqueLOCAL

ComplexiteLOW

Privileges requisLOW

Interaction utilisateurNONE

Publie12/31/2002

Derniere modification4/16/2026

Sourcenvd

Observations honeypot0

Produits affectes

microsoft:outlookpgp:personal_privacy

Faiblesses (CWE)

CWE-312

References

http://www.ntbugtraq.com/default.asp?pid=36&sid=1&A2=ind0201&L=ntbugtraq&F=P&S=&P=528(cve@mitre.org)

http://www.securityfocus.com/bid/3825(cve@mitre.org)

https://exchange.xforce.ibmcloud.com/vulnerabilities/7900(cve@mitre.org)

http://www.ntbugtraq.com/default.asp?pid=36&sid=1&A2=ind0201&L=ntbugtraq&F=P&S=&P=528(af854a3a-2127-422b-91ae-364da2661108)

http://www.securityfocus.com/bid/3825(af854a3a-2127-422b-91ae-364da2661108)

https://exchange.xforce.ibmcloud.com/vulnerabilities/7900(af854a3a-2127-422b-91ae-364da2661108)

Correlations IOC

Aucune correlation enregistree

This product uses data from the NVD API but is not endorsed or certified by the NVD.