CVE-2012-6533 (GCVE-0-2012-6533)
Vulnerability from cvelistv5 – Published: 2013-02-18 11:00 – Updated: 2024-09-17 03:22
VLAI
EPSS
VEX
Summary
Buffer overflow in pgpwded.sys in Symantec PGP Desktop 10.x and Encryption Desktop 10.3.0 before MP1 on Windows XP and Server 2003 allows local users to gain privileges via a crafted application.
Severity
No CVSS data available.
CWE
- n/a
Assigner
References
2 references
| URL | Tags |
|---|---|
| http://www.securityfocus.com/bid/57835 | vdb-entryx_refsource_BID |
| http://www.symantec.com/security_response/securit… | x_refsource_CONFIRM |
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-06T21:28:39.920Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"name": "57835",
"tags": [
"vdb-entry",
"x_refsource_BID",
"x_transferred"
],
"url": "http://www.securityfocus.com/bid/57835"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "http://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory\u0026pvid=security_advisory\u0026year=2013\u0026suid=20130213_00"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "Buffer overflow in pgpwded.sys in Symantec PGP Desktop 10.x and Encryption Desktop 10.3.0 before MP1 on Windows XP and Server 2003 allows local users to gain privileges via a crafted application."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2013-02-18T11:00:00.000Z",
"orgId": "80d3bcb6-88de-48c2-a47e-aebf795f19b5",
"shortName": "symantec"
},
"references": [
{
"name": "57835",
"tags": [
"vdb-entry",
"x_refsource_BID"
],
"url": "http://www.securityfocus.com/bid/57835"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "http://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory\u0026pvid=security_advisory\u0026year=2013\u0026suid=20130213_00"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "secure@symantec.com",
"ID": "CVE-2012-6533",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Buffer overflow in pgpwded.sys in Symantec PGP Desktop 10.x and Encryption Desktop 10.3.0 before MP1 on Windows XP and Server 2003 allows local users to gain privileges via a crafted application."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "57835",
"refsource": "BID",
"url": "http://www.securityfocus.com/bid/57835"
},
{
"name": "http://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory\u0026pvid=security_advisory\u0026year=2013\u0026suid=20130213_00",
"refsource": "CONFIRM",
"url": "http://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory\u0026pvid=security_advisory\u0026year=2013\u0026suid=20130213_00"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "80d3bcb6-88de-48c2-a47e-aebf795f19b5",
"assignerShortName": "symantec",
"cveId": "CVE-2012-6533",
"datePublished": "2013-02-18T11:00:00.000Z",
"dateReserved": "2013-02-17T00:00:00.000Z",
"dateUpdated": "2024-09-17T03:22:24.849Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1",
"vulnerability-lookup:meta": {
"epss": {
"cve": "CVE-2012-6533",
"date": "2026-07-15",
"epss": "0.0062",
"percentile": "0.45668"
},
"fkie_nvd": {
"configurations": "[{\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:symantec:pgp_desktop:10.0.0:-:*:*:*:windows:*:*\", \"matchCriteriaId\": \"8ECF6686-DE99-4E36-8755-F9428167F709\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:symantec:pgp_desktop:10.0.1:-:*:*:*:windows:*:*\", \"matchCriteriaId\": \"CCD53E72-7D94-437F-AE83-C077FAD671A9\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:symantec:pgp_desktop:10.0.2:-:*:*:*:windows:*:*\", \"matchCriteriaId\": \"A0604C91-EC64-490B-9C94-00C1757DADE6\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:symantec:pgp_desktop:10.0.3:-:*:*:*:windows:*:*\", \"matchCriteriaId\": \"1D633009-6006-4C62-8E23-F1380C66FA17\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:symantec:pgp_desktop:10.1.0:-:*:*:*:windows:*:*\", \"matchCriteriaId\": \"1F8F75CC-8725-44F1-9833-1279AE2FF49D\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:symantec:pgp_desktop:10.1.1:-:*:*:*:windows:*:*\", \"matchCriteriaId\": \"6FA86438-9097-463D-8EA5-6E49A46215F7\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:symantec:pgp_desktop:10.1.2:-:*:*:*:windows:*:*\", \"matchCriteriaId\": \"DBC102F4-B58F-43A7-BE48-849FA764ED32\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:symantec:pgp_desktop:10.2.0:-:*:*:*:windows:*:*\", \"matchCriteriaId\": \"C13CC0B6-F19B-4CBB-ACE8-4105D672C8AE\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:symantec:pgp_desktop:10.2.1:-:*:*:*:windows:*:*\", \"matchCriteriaId\": \"AA77179C-D1D1-4FCF-B1BF-2EA481966972\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_2003_server:*:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"60EC86B8-5C8C-4873-B364-FB1F8EFE1CFF\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_xp:*:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"E61F1C9B-44AF-4B35-A7B2-948EEF7639BD\"}]}]}, {\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:symantec:encryption_desktop:10.3.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"838DEBE6-2A04-4737-8282-5E7803B483A7\"}]}]}]",
"descriptions": "[{\"lang\": \"en\", \"value\": \"Buffer overflow in pgpwded.sys in Symantec PGP Desktop 10.x and Encryption Desktop 10.3.0 before MP1 on Windows XP and Server 2003 allows local users to gain privileges via a crafted application.\"}, {\"lang\": \"es\", \"value\": \"Desbordamiento de buffer en pgpwded.sys del Symantec PGP Desktop v10.x and Encryption Desktop v10.3.0 antes de MP1 en Windows XP y Server 2003 que permite a usuarios locales escalar privilegios por medio de aplicaciones creadas para este prop\\u00f3sito.\"}]",
"id": "CVE-2012-6533",
"lastModified": "2024-11-21T01:46:18.227",
"metrics": "{\"cvssMetricV2\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"2.0\", \"vectorString\": \"AV:L/AC:M/Au:N/C:P/I:P/A:P\", \"baseScore\": 4.4, \"accessVector\": \"LOCAL\", \"accessComplexity\": \"MEDIUM\", \"authentication\": \"NONE\", \"confidentialityImpact\": \"PARTIAL\", \"integrityImpact\": \"PARTIAL\", \"availabilityImpact\": \"PARTIAL\"}, \"baseSeverity\": \"MEDIUM\", \"exploitabilityScore\": 3.4, \"impactScore\": 6.4, \"acInsufInfo\": false, \"obtainAllPrivilege\": false, \"obtainUserPrivilege\": false, \"obtainOtherPrivilege\": false, \"userInteractionRequired\": false}]}",
"published": "2013-02-18T11:56:38.807",
"references": "[{\"url\": \"http://www.securityfocus.com/bid/57835\", \"source\": \"secure@symantec.com\"}, {\"url\": \"http://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory\u0026pvid=security_advisory\u0026year=2013\u0026suid=20130213_00\", \"source\": \"secure@symantec.com\", \"tags\": [\"Vendor Advisory\"]}, {\"url\": \"http://www.securityfocus.com/bid/57835\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory\u0026pvid=security_advisory\u0026year=2013\u0026suid=20130213_00\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Vendor Advisory\"]}]",
"sourceIdentifier": "secure@symantec.com",
"vulnStatus": "Modified",
"weaknesses": "[{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"description\": [{\"lang\": \"en\", \"value\": \"CWE-119\"}]}]"
},
"nvd": "{\"cve\":{\"id\":\"CVE-2012-6533\",\"sourceIdentifier\":\"secure@symantec.com\",\"published\":\"2013-02-18T11:56:38.807\",\"lastModified\":\"2026-04-29T01:13:23.040\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"Buffer overflow in pgpwded.sys in Symantec PGP Desktop 10.x and Encryption Desktop 10.3.0 before MP1 on Windows XP and Server 2003 allows local users to gain privileges via a crafted application.\"},{\"lang\":\"es\",\"value\":\"Desbordamiento de buffer en pgpwded.sys del Symantec PGP Desktop v10.x and Encryption Desktop v10.3.0 antes de MP1 en Windows XP y Server 2003 que permite a usuarios locales escalar privilegios por medio de aplicaciones creadas para este prop\u00f3sito.\"}],\"metrics\":{\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:L/AC:M/Au:N/C:P/I:P/A:P\",\"baseScore\":4.4,\"accessVector\":\"LOCAL\",\"accessComplexity\":\"MEDIUM\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"PARTIAL\",\"integrityImpact\":\"PARTIAL\",\"availabilityImpact\":\"PARTIAL\"},\"baseSeverity\":\"MEDIUM\",\"exploitabilityScore\":3.4,\"impactScore\":6.4,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-119\"}]}],\"configurations\":[{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:symantec:pgp_desktop:10.0.0:-:*:*:*:windows:*:*\",\"matchCriteriaId\":\"8ECF6686-DE99-4E36-8755-F9428167F709\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:symantec:pgp_desktop:10.0.1:-:*:*:*:windows:*:*\",\"matchCriteriaId\":\"CCD53E72-7D94-437F-AE83-C077FAD671A9\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:symantec:pgp_desktop:10.0.2:-:*:*:*:windows:*:*\",\"matchCriteriaId\":\"A0604C91-EC64-490B-9C94-00C1757DADE6\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:symantec:pgp_desktop:10.0.3:-:*:*:*:windows:*:*\",\"matchCriteriaId\":\"1D633009-6006-4C62-8E23-F1380C66FA17\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:symantec:pgp_desktop:10.1.0:-:*:*:*:windows:*:*\",\"matchCriteriaId\":\"1F8F75CC-8725-44F1-9833-1279AE2FF49D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:symantec:pgp_desktop:10.1.1:-:*:*:*:windows:*:*\",\"matchCriteriaId\":\"6FA86438-9097-463D-8EA5-6E49A46215F7\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:symantec:pgp_desktop:10.1.2:-:*:*:*:windows:*:*\",\"matchCriteriaId\":\"DBC102F4-B58F-43A7-BE48-849FA764ED32\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:symantec:pgp_desktop:10.2.0:-:*:*:*:windows:*:*\",\"matchCriteriaId\":\"C13CC0B6-F19B-4CBB-ACE8-4105D672C8AE\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:symantec:pgp_desktop:10.2.1:-:*:*:*:windows:*:*\",\"matchCriteriaId\":\"AA77179C-D1D1-4FCF-B1BF-2EA481966972\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_2003_server:*:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"60EC86B8-5C8C-4873-B364-FB1F8EFE1CFF\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_xp:*:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E61F1C9B-44AF-4B35-A7B2-948EEF7639BD\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:symantec:encryption_desktop:10.3.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"838DEBE6-2A04-4737-8282-5E7803B483A7\"}]}]}],\"references\":[{\"url\":\"http://www.securityfocus.com/bid/57835\",\"source\":\"secure@symantec.com\"},{\"url\":\"http://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory\u0026pvid=security_advisory\u0026year=2013\u0026suid=20130213_00\",\"source\":\"secure@symantec.com\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://www.securityfocus.com/bid/57835\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory\u0026pvid=security_advisory\u0026year=2013\u0026suid=20130213_00\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]}]}}"
}
}
Loading…
Loading…
Experimental. This forecast is provided for visualization only and may change without notice. Do not use it for operational decisions.
Forecast uses a logistic model when the trend is rising, or an exponential decay model when the trend is falling. Fitted via linearized least squares.
Sightings
| Author | Source | Type | Date | Other |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…