PGP Desktop DLL Loading Arbitrary Code Execution Vulnerability

PGP Desktop is prone to a vulnerability that lets attackers execute arbitrary code.

An attacker can exploit this issue by enticing a legitimate user to use the vulnerable application to open a file from a network share location that contains a specially crafted Dynamic Link Library (DLL) file.

PGP Desktop 9.8 , 9.9.0, 9,10.0, and 10.0.0 are vulnerable; other versions may also be affected.


 

Privacy Statement
Copyright 2010, SecurityFocus