Vulnerability Description
Unquoted Windows search path vulnerability in RDDService in Symantec PGP Desktop 10.0.x through 10.2.x and Symantec Encryption Desktop 10.3.0 before MP3 allows local users to gain privileges via a Trojan horse application in the %SYSTEMDRIVE% top-level directory.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Symantec | Encryption Desktop | 10.3.0 |
| Symantec | Pgp Desktop | 10.0.0 |
References
- http://www.securityfocus.com/bid/61489
- http://www.symantec.com/security_response/securityupdates/detail.jsp?fid=securit
- http://www.securityfocus.com/bid/61489
- http://www.symantec.com/security_response/securityupdates/detail.jsp?fid=securit
FAQ
What is CVE-2013-1610?
CVE-2013-1610 is a vulnerability with a CVSS score of 6.8 (MEDIUM). Unquoted Windows search path vulnerability in RDDService in Symantec PGP Desktop 10.0.x through 10.2.x and Symantec Encryption Desktop 10.3.0 before MP3 allows local users to gain privileges via a Tro...
How severe is CVE-2013-1610?
CVE-2013-1610 has been rated MEDIUM with a CVSS base score of 6.8/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2013-1610?
Check the references section above for vendor advisories and patch information. Affected products include: Symantec Encryption Desktop, Symantec Pgp Desktop.