CVE-2002-0788

CVSS 5.5 - MEDIUM

Description

An interaction between PGP 7.0.3 with the "wipe deleted files" option, when used on Windows Encrypted File System (EFS), creates a cleartext temporary files that cannot be wiped or deleted due to strong permissions, which could allow certain local users or attackers with physical access to obtain cleartext information.

Affected Products

3

Vendor	Product	Version
pgp	corporate_desktop	`7.1`
pgp	freeware	`7.0.3`
pgp	personal_security	`7.0.3`

References

http://archives.neohapsis.com/archives/bugtraq/200...

http://download.nai.com/products/licensed/pgp/desk...

http://www.iss.net/security_center/static/9044.php

http://www.osvdb.org/4363

http://www.securityfocus.com/bid/4702

http://archives.neohapsis.com/archives/bugtraq/200...

http://download.nai.com/products/licensed/pgp/desk...

http://www.iss.net/security_center/static/9044.php

http://www.osvdb.org/4363

http://www.securityfocus.com/bid/4702

Weakness Types

CWE-459

CVE Information

CVE ID:: CVE-2002-0788
Published:: 2002-08-12
Modified:: 2026-04-16
CVSS Score:: 5.5
Severity:: MEDIUM
Vector:: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

Affected Vendors

pgp

Quick Actions

View on NVD Find Similar CVEs

CVSS Severity Scale

0.0 - 3.9 LOW

4.0 - 6.9 MEDIUM

7.0 - 8.9 HIGH

9.0 - 10.0 CRITICAL