CVE-2005-4151

Summary

CVE	CVE-2005-4151
State	PUBLIC
Assigner	[email protected]
Source Priority	CVE Program / NVD first with legacy fallback
Published	2005-12-10 11:03:00 UTC
Updated	2018-10-19 15:40:00 UTC
Description	The Wipe Free Space utility in PGP Desktop Home 8.0 and Desktop Professional 9.0.3 Build 2932 and earlier does not clear file slack space in the last cluster for the file, which allows local users to access the previous contents of the disk.

Risk And Classification

Problem Types: NVD-CWE-Other

NVD Known Affected Configurations (CPE 2.3)

Type	Vendor	Product	Version	Update	Edition	Language
Application	Pgp	Desktop	8.0	All	home	All
Application	Pgp	Desktop	9.0	All	professional	All
Application	Pgp	Desktop	8.0	All	home	All
Application	Pgp	Desktop	9.0	All	professional	All
Application	Pgp	Desktop	All	All	professional	All

References

Reference	Source	Link	Tags
Neohapsis Archives - Full Disclosure List - #0349 - [Full-disclosure] PGP Wipe Free Space, Lyris ListManager Flaws, Windows Timestamps, Sam Juicer	FULLDISC	archives.neohapsis.com
The Metasploit Project	MISC	metasploit.com	Exploit
PGP Desktop Wipe Free Space Assistant Improper Disk Wipe Vulnerability	BID	www.securityfocus.com	Exploit
SecurityFocus	BUGTRAQ	www.securityfocus.com
Secunia - Advisories - PGP Desktop Wipe Free Space Security Issue	SECUNIA	secunia.com	Vendor Advisory
SecurityFocus	BUGTRAQ	www.securityfocus.com
21569	OSVDB	www.osvdb.org
SecurityFocus	BUGTRAQ	www.securityfocus.com
CVE Program record	CVE.ORG	www.cve.org	canonical
NVD vulnerability detail	NVD	nvd.nist.gov	canonical, analysis

No vendor comments have been submitted for this CVE.

There are currently no legacy QID mappings associated with this CVE.