Test ID:	1.3.6.1.4.1.25623.1.0.800600
Category:	Denial of Service
Title:	PGP Desktop Local Denial of Service Vulnerability
Summary:	Check for the version of PGP Desktop
Description:	Overview: This host has PGP Desktop is installed and is prone to Denial of Service vulnerability. Vulnerability Insight: IOCTL handler in 'pgpdisk.sys' and 'pgpwded.sys' files does not adequately validate buffer data associated with the Irp object. Impact: Successful exploitation allows attackers to execute arbitrary code with system privileges or to crash the application. Impact Level: Application. Affected Software/OS: PGP Desktop prior to version 9.10 on Windows. Fix: Upgrade to PGP Desktop 9.10 http://www.pgp.com/downloads/desktoptrial/desktoptrial2.html References: http://secunia.com/advisories/33310/ http://en.securitylab.ru/lab/PT-2009-01 http://www.securityfocus.com/archive/1/502633
Cross-Ref:	BugTraq ID: 34490 Common Vulnerability Exposure (CVE) ID: CVE-2009-0681 Bugtraq: 20090413 [Suspected Spam][Positive Technologies SA 2009-01] PGP Desktop Pgpdisk.sys And Pgpwded.sys Multiple Vulnerabilities (Google Search) http://www.securityfocus.com/archive/1/archive/1/502633/100/0/threaded http://en.securitylab.ru/lab/PT-2009-01 https://pgp.custhelp.com/cgi-bin/pgp.cfg/php/enduser/std_adp.php?p_faqid=1014&p_topview=1 http://www.securitytracker.com/id?1022034
Copyright	Copyright (C) 2009 Greenbone Networks GmbH

This is only one of 32582 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.

New User Registration Email: UserID: Passwd: Please email me your monthly newsletters, informing the latest services, improvements & surveys. Please email me a vulnerability test announcement whenever a new test is added.     Privacy

Registered User Login   UserID:     Passwd:     Forgot userid or passwd? Email/Userid: