Vulnerability CVE-2010-3618 - CERT Civis.Net

Vulnerability Name:

CVE-2010-3618 (CCN-63366)

Assigned:

2010-11-18

Published:

2010-11-18

Updated:

2017-08-17

Summary:

PGP Desktop 10.0.x before 10.0.3 SP2 and 10.1.0 before 10.1.0 SP1 does not properly implement the "Decrypt/Verify File via Right-Click" functionality for multi-packet OpenPGP messages that represent multi-message input, which allows remote attackers to spoof signed data by concatenating an additional message to the end of a legitimately signed message, related to a "piggy-back" or "unsigned data injection" issue.

CVSS v3 Severity:

5.3 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N)

Exploitability Metrics:	Attack Vector (AV): Network Attack Complexity (AC): Low Privileges Required (PR): None User Interaction (UI): None
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): None Integrity (I): Low Availibility (A): None

CVSS v2 Severity:

4.3 Medium (CVSS v2 Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N)
3.2 Low (Temporal CVSS v2 Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N/E:U/RL:OF/RC:C)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Medium Authentication (Au): None
Impact Metrics:	Confidentiality (C): None Integrity (I): Partial Availibility (A): None

4.3 Medium (CCN CVSS v2 Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N)
3.2 Low (CCN Temporal CVSS v2 Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N/E:U/RL:OF/RC:C)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Medium Athentication (Au): None
Impact Metrics:	Confidentiality (C): None Integrity (I): Partial Availibility (A): None

Vulnerability Type:

Vulnerability Consequences:

Bypass Security

References:

Source: MITRE
Type: CNA
CVE-2010-3618

Source: CCN
Type: SA42293
PGP Desktop Message Verification Vulnerability

Source: SECUNIA
Type: UNKNOWN
42293

Source: CCN
Type: SA42307
PGP Desktop Message Verification Vulnerability

Source: SECUNIA
Type: UNKNOWN
42307

Source: CCN
Type: SECTRACK ID: 1024760
PGP Desktop Data Insertion Bug Lets Remote Users Bypass Message Verification

Source: MISC
Type: Exploit
http://www.cs.ru.nl/E.Verheul/papers/Govcert/Pretty%20Good%20Piggybagging%20v1.0.pdf

Source: CCN
Type: US-CERT VU#300785
PGP Desktop unsigned data injection vulnerability

Source: CERT-VN
Type: US Government Resource
VU#300785

Source: CCN
Type: OSVDB ID: 69379
PGP Desktop OpenPGP Message Verification Weakness

Source: CCN
Type: BID-44920
Symantec PGP Desktop OpenPGP Message Data Insertion Vulnerability

Source: SECTRACK
Type: UNKNOWN
1024760

Source: CCN
Type: SYM10-012
PGP Desktop Unsigned Data Insertion

Source: CONFIRM
Type: UNKNOWN
http://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&year=2010&suid=20101118_00

Source: XF
Type: UNKNOWN
pgpdesktop-openpgp-security-bypass(63366)

Source: XF
Type: UNKNOWN
pgpdesktop-openpgp-security-bypass(63366)

Source: CONFIRM
Type: Vendor Advisory
https://pgp.custhelp.com/app/answers/detail/a_id/2290

Vulnerable Configuration:

Configuration 1:

cpe:/a:pgp:desktop_for_windows:10.0.0:*:*:*:*:*:*:*

OR cpe:/a:pgp:desktop_for_windows:10.0.1:*:*:*:*:*:*:*

OR cpe:/a:pgp:desktop_for_windows:10.0.2:*:*:*:*:*:*:*

OR cpe:/a:pgp:desktop_for_windows:10.0.3:*:*:*:*:*:*:*

OR cpe:/a:pgp:desktop_for_windows:*:sp1:*:*:*:*:*:* (Version <= 10.0.3)

OR cpe:/a:pgp:desktop_for_windows:10.1.0:*:*:*:*:*:*:*

Configuration 2:

cpe:/a:pgp:desktop_for_mac:10.0.0:*:*:*:*:*:*:*

OR cpe:/a:pgp:desktop_for_mac:10.0.1:*:*:*:*:*:*:*

OR cpe:/a:pgp:desktop_for_mac:10.0.2:*:*:*:*:*:*:*

OR cpe:/a:pgp:desktop_for_mac:10.0.3:*:*:*:*:*:*:*

OR cpe:/a:pgp:desktop_for_mac:*:sp1:*:*:*:*:*:* (Version <= 10.0.3)

OR cpe:/a:pgp:desktop_for_mac:10.1.0:*:*:*:*:*:*:*

Denotes that component is vulnerable