← Voltar para CVEs
CVE-2002-1696
MEDIUM5.5
Descricao
Microsoft Outlook plug-in PGP version 7.0, 7.0.3, and 7.0.4 silently saves a decrypted copy of a message to hard disk when "Automatically decrypt/verify when opening messages" option is checked, "Always use Secure Viewer when decrypting" option is not checked, and the user replies to an encrypted message.
Detalhes CVE
Pontuacao CVSS v3.15.5
SeveridadeMEDIUM
Vetor CVSSCVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
Vetor de ataqueLOCAL
ComplexidadeLOW
Privilegios necessariosLOW
Interacao do usuarioNONE
Publicado12/31/2002
Ultima modificacao4/16/2026
Fontenvd
Avistamentos honeypot0
Produtos afetados
microsoft:outlookpgp:personal_privacy
Fraquezas (CWE)
CWE-312
Referencias
http://www.ntbugtraq.com/default.asp?pid=36&sid=1&A2=ind0201&L=ntbugtraq&F=P&S=&P=528(cve@mitre.org)
http://www.securityfocus.com/bid/3825(cve@mitre.org)
https://exchange.xforce.ibmcloud.com/vulnerabilities/7900(cve@mitre.org)
http://www.ntbugtraq.com/default.asp?pid=36&sid=1&A2=ind0201&L=ntbugtraq&F=P&S=&P=528(af854a3a-2127-422b-91ae-364da2661108)
http://www.securityfocus.com/bid/3825(af854a3a-2127-422b-91ae-364da2661108)
https://exchange.xforce.ibmcloud.com/vulnerabilities/7900(af854a3a-2127-422b-91ae-364da2661108)
Correlacoes IOC
Sem correlacoes registradas
This product uses data from the NVD API but is not endorsed or certified by the NVD.