CVE-2002-1696

Microsoft Outlook plug-in PGP version 7.0, 7.0.3, and 7.0.4 silently saves a decrypted copy of a message to hard disk when "Automatically decrypt/verify when opening messages" option is checked, "Always use Secure Viewer when decrypting" option is not checked, and the user replies to an encrypted message.
Configurations

Configuration 1 (hide)

AND
OR cpe:2.3:a:pgp:personal_privacy:7.0:*:*:*:*:*:*:*
cpe:2.3:a:pgp:personal_privacy:7.0.3:*:*:*:*:*:*:*
cpe:2.3:a:pgp:personal_privacy:7.0.4:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:outlook:98:*:*:*:*:*:*:*

History

13 Feb 2024, 16:20

Type Values Removed Values Added
CVSS v2 : 2.1
v3 : unknown
v2 : 2.1
v3 : 5.5
CPE cpe:2.3:a:pgp:pgp:7.0.3:*:*:*:*:*:*:*
cpe:2.3:a:pgp:pgp:7.0.4:*:*:*:*:*:*:*
cpe:2.3:a:pgp:pgp:7.0:*:*:*:*:*:*:*
cpe:2.3:a:pgp:personal_privacy:7.0.4:*:*:*:*:*:*:*
cpe:2.3:a:pgp:personal_privacy:7.0:*:*:*:*:*:*:*
cpe:2.3:a:pgp:personal_privacy:7.0.3:*:*:*:*:*:*:*
References (BID) http://www.securityfocus.com/bid/3825 - (BID) http://www.securityfocus.com/bid/3825 - Broken Link, Third Party Advisory, VDB Entry
References (NTBUGTRAQ) http://www.ntbugtraq.com/default.asp?pid=36&sid=1&A2=ind0201&L=ntbugtraq&F=P&S=&P=528 - (NTBUGTRAQ) http://www.ntbugtraq.com/default.asp?pid=36&sid=1&A2=ind0201&L=ntbugtraq&F=P&S=&P=528 - Broken Link
References (XF) https://exchange.xforce.ibmcloud.com/vulnerabilities/7900 - (XF) https://exchange.xforce.ibmcloud.com/vulnerabilities/7900 - Third Party Advisory, VDB Entry
First Time Pgp personal Privacy
CWE NVD-CWE-Other CWE-312

Information

Published : 2002-12-31 05:00

Updated : 2024-02-28 10:24


NVD link : CVE-2002-1696

Mitre link : CVE-2002-1696

CVE.ORG link : CVE-2002-1696


JSON object : View

Products Affected

pgp

  • personal_privacy

microsoft

  • outlook
CWE
CWE-312

Cleartext Storage of Sensitive Information